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METHOD OF DETERMINING THE VISIBILITY TO A REMOTE 
DATABASE CLIENT OF A PLURALITY OF DATABASE 
5 TRANSACTIONS USING A NETWORKED PROXY SERVER 

INTRODUCTION 

Technical Field 

10 This invention relates to a system and method for providing updates to 

a network of partially replicated relational database systems, and, more 
particularly, for providing efficient access to a database by a remote client 
using a networked proxy server. 

15 Background 

Relational databases are a commonly-employed data structure for 
representing data in a business or other environment. A relational database 
represents data in die form of a collection of two-dimensional tables. Each 
table comprises a series of cells arranged in rows and columns. Typically, a 

20 row in a table represents a particular observation. A column represents either 
a data field or a pointer to a row in another table. 

For example, a database describing an organizational structure may have 
one table to describe each position in the organization, and another table to 
25 describe each employee in the organization. The employee table may include 
information specific to the employee, such as name, employee number, age, 
salary, etc. The position table may include information specific to the position, 
such as the position title ("salesman", "vice president", etc.), a salary range, 

-1- 
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and the like. The tables may be related by, for example, providing in each row 
of the employee table a pointer to a particular row in the position table, 
coordinated so that, for each row in the employee table, there is a pointer to 
the particular row in the position table that describes that employee's position. 

5 A relational database management system (RDBMS) supports "joining" these 
tables in response to a query from a user, so that the user making a query 
about, for example, a particular employee, may be provided with a report of 
the selected employee, including not only the information in the employee 
table,, but also the information in the related position table. : 

10 * . ^ \ -v 

Relational databases may be much more complex than this example, with 
several tables and a multiplicity of relations among them. 

With the widespread use of inexpensive portable computers, it is 
15 advantageous to replicate a database onto a portable computer for reference at 
locations remote from the central computer. The replicated database may then 
be referenced by the user of the portable computer, without requiring reference 
to the main database, which may, be maintained at a central location 
inconvenient to the user of the portable computer. However, there are a 
20 number of difficulties with the use of a replicated database. 

One disadvantage is that a foil copy of the central database may require 
more data storage than is desired, or economical. For example, a salesman 
working in the field may need to refer to the database for information regarding 

25 sales opportunities in his sales area, but have no need to refer to any 
information, regarding sales opportunities outside of his area. One possible 
approach to reduce the amount of required data storage is to simply replicate 
only that portion of the database that is needed by the user. However, this 
approach does not recognize that the criteria to determine which portions of the 

30 data are required is likely to vary over time. For example, the salesman may 
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have a new city added to his territory. Under conventional approaches, the 
salesman would need to re-replicate his local copy of the database, this time 
selecting data including the added city. Such a practice is inconvenient, subject 
to error, and time-consuming. ; 

5 ; ■.. • ' < • • ' :. 

A further disadvantage to a replicated database is the difficulties 
encountered in attempting fo update data using the replicated copy. A change 
made to the replicated database is hot made tci the central database, leading to 
- a discrepancy between the information that is stordd in the replicated copy of 

10 the database and the information that is stored in the central database. 
Although it is possible to journal modifications made to the replicated copy and 
apply an identical modification to the central database, one problem that this 
approach faces is the possibility of colliding updates; that is, where a user of 
a replicated copy makes a change to data that is also changed by a user of the 

15 central copy of by the user of another replicated copy. 

It is therefore desirable to pirovidfe a capability to maintain one or more 
partially-replicated copies of a central database, in such a way that the degree 
of replication may be easily changed without requiring a refresh of the entire 

20 replicated database; and that permits updates to be coordinated among users of 
the central database and users of the partially replicated databases. In addition, 
it is also desirable to provide access to the central database by the users of the 
partially replicated databases over a wide area network, so that it is not 
necessary for each user to call the central database directly. The ability to use 

25 the Internet, a commercial online provider's network; or even a corporate 
intranet, significandy increases the^ utility of the partially replicated databases 
by providing excellent connectivity at relatively minimal cost. Further, the 
software and the replicated databases may be integrated with other services 
which use the Internet. 

30 : V ' : , • , ' - 
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SU MMARY OF THE I NVENTION 

The present invention is directed to a method of maintaining a partially 
replicated database in such a way that updates made to a central database, or 
to another partially replicated database, are selectively propagated to the 

5 partially replicated database. Updates are propagated to a partially replicated 
database if the owner of the partially replicated database is deemed to have 
visibility to the data being updated. Visibility is determined by use of 
predetermined rules stored in a rules database^ p : <^jispect of the invention, 
the stored rules are assessed against data content of various tables that make up 

10 a logical entity, known as a docking object, that is being updated. 

In another aspect of the invention, the stored rules are assessed against 
data content of one or more dockirtg objects that are not necessarily updated, 
but that are related to a docking object being updated. In one embodiment, the 
15 visibility attributes of the related docking objects are recursively determined. 

In yet another aspect of the invention, changes in visibility are 
determined to enable the central computer to direct the nodes to insert the 
docking object into its partially replicated database. Such changes in visibility 
20 are determined so as to enable the central computer to direct a node to remove 
a docking object from its partially replicated database. 

In a farther aspect of the invention, the predetermined rules are in 
declarative form and specify visibility of data based upon structure of the data 
25 without reference to data content. 

In still another aspect of the invention, the transactions made to the 
database are ordered and processed in such a way as to reduce the 
computational resources required to calculate the visibility of the transactions. 

30 
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In another aspect of the invention, the transactions are transmitted over 
a the Internet and provided to a networked proxy server which transmits the 
requests to the central computer for database access. 

5 In yet another aspect of the invention, security and access control are 

provided for secure transmissions over an insecure network. 

[These and other aspects of the inventions will become apparent to one 
skilled in the art by reference to the following drawings and detailed 
10 description, 

BRIEF DESCRIPTION OF THE DRAWINGS 

Figure 1 depicts an overview of the operation of one embodiment of the 
present invention. 

Figure 2 depicts a database schema that shows the relationship of the 
various components that make up a Docking Object. 

Figure 3 depicts steps performed by an update manager to update a 
20 database. > 

Figure 4 depicts steps performed by a Docking Manager to transmit 
and/or receive one or more transaction logs. 

25 Figure 5 depicts the steps performed by a merge processor to merge 

transaction log records into an existing database. 

Figure 6 depicts the steps performed by a log manager to prepare a 
partial transaction log. . 

30 
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Figure 7 depicts the steps performed by a visibility calculator for 
calculating visibility for a docking object as invoked by a log manager. 

Figure 8 depicts the steps performed to synchronize a partially replicated 
5 database in response to a change .in data visibility. 

Figure 9 depicts the overall structure of a system embodying the present 
invention using a networked proxy server. 

10 DESCRIPTION OF SPECIFIC EMBODIMENTS 

Overview 

Figure 1 depicts an overview of the operation of one embodiment of the 
, present invention. Figure 1 depicts a central computer system 1 and three 
remote computer systems (or "nodes") 21-a, 21-b $ and 21-c. Each of nodes 21- 

15 a, 21-b and 2Uc are depicted in various states of communication with central 
computer system 1 , as will be more fully explained. Central computer system 
1 includes a central database 3, a docking manager 5, a merge processor 7 and 
a log manager 9. Central computer system 1 additionally optionally includes 
update manager 1 1 responsive to user input 13. 

20 , . - ■ ■ . i- 

Node 21-a is a remote computer system, such as a mobile client such as 
a laptop computer. Node 21-a includes a partially replicated remote database 
23-a, update manager 3 1 -a responsive to user input 33~a, docking manager 25-a 
and merge manager 27-a. .In operation, update manager is responsive to user 

25 input 33-a to make changes to remote database 23-a as directed by the operator 
of node 21-a. Updates made are recorded, or journaled, in node update log 35- 

a. ; . «-.r ■ ° ■ 

At some point at the convenience of the operator of node 21-a, node 
30 docking manager; 35-a is activated^ and enters into communication with central 
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docking manager 5. Update log 35-a is taken as input by node docking 
manager 25-a, and provided to central docking manager 5. Central docking 
manager 5 creates a received node update log 19, which contains all the 
information that had been rdcbrded in update log 35-a. Optionally, partial log 
5 17-a is taken as input t>y central docking manager 5 and provided to node 
docking manager 25-a, as more fully described herein. 

At some point in time, at the convenience of the operator of central 
computer system 1, merge processor 7 is activated. Merge processor 7 takes 

10 as input received node update log 19, and applies the updates described therein 
to central database 3. In the process of applying the updates from received 
node update log 19, merge processor journals the updates applied to central 
update log 15. Optionally, update manager 11, responsive to user input 12 
makes additional changed to central database 3 as directed by the operator of 

15 central computer system 1. The updates made by update manager 11 are 
additionally journaled in central update log 15. 

At some point in time, at the convenience of the operator of central 
computer system 1, log manager 9 is activated. Log manager 9 takes as input 

20 central update log 15 and produces-as^output a set of partial logs 17-a, 17-b and 
17-c according to visibility rules as will be further described herein. Each of 
partial logs 17-a, 17-b and 17-c corresponds to one of nodes 21-a, 21-b and 21- 
; c. When a node docking manager such as node docking manager 25-a enters 
into communication with central docking manager 5 and optionally requests 

25 transmission of its corresponding partial log, central docking manager 5 takes 
as input the appropriate partial log, such as partial log 17-a, arid presents it to 
node docking manager 25-a. Node docking manager 25-a then replicates partial 
log 17-a as merge log 37-a. 

30 .At some point in the future, at the convenience of the operator of node 
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21-a, 

merge processor 27-a is activated. Merge processor 27-a takes as input merge 
log 37-a, and applies the updates described therein to partially replicated 
database 23~a. 

5 . , . ... . ' 

In addition to node 21-a, Figure 1 also depicts two additional nodes 21-b 
and 21-c. Node 21-b is depicted in communication with central computer 1. 
However, unlike node 21-a, the operator of node 21-b has requested only to 
send his updates to central computer system 1 , and has not requested to be 

10 presented with changes made elsewhere to be made to his partially replicated 
database 23-b. This may be, for example, if the operator has an urgent update 
that must be made as soon as possible, but does not have the time to receive 
updates from other nodes. Accordingly, Figure 1 shows only transmission of 
node update log 35-a from node docking manager 25-b to central docking 

15 manager 5, and no transmission from central docking manager 5 to node 
docking manager 25-b .^Accordingly, the merge manager for node 21-b is not 
activated and is not shown. ■ 

Likewise, node 21-c is depicted as not in communication with central 
20 computer system .1.. Accordingly, the docking manager for node 21-c is not 
activated and is not shown. 

By the cycle described above, updates made by each of nodes 2 1 -a, 2 1 -b 
and 21-c are presented to central computer system 1, permitting central 
25 database 3 to be updated accordingly. In addition, each of the updates made 
by each of the nodes 21-a, 21-b and 21-c, as well as updates made on central 
computer system 1, are routed back to each of nodes 21-a, 21-b, and 21-c, 
thereby keeping each of partial databases 23-a, 23-b and 23-c in 
synchronization with each other and with central database 3. 
. 30 . .... ■ ... - . ' 
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Database Structure 

The synchronization of central database 3 with node databases 23-a, 23-b 
and 23-c is performed using a construct called a Docking Object. A Docking 
Object consists of Member Tables (including one Primary Table), Visibility 
5 Rules, Visibility Events, and related Docking Objects. 

A Member Table is a table of the relational database that makes up a 
docking object. When a docking object is propagated from central database 3 
to one of node databases 23-a, 23-b or 23-c, the propagation takes the form of 

10 an insertion into each of the Member Tables associated with the particular 
docking object. Similarly, when a docking object is scheduled to be removed 
from a database, that removal consists of deleting records from the member 
tables associated with the docking object. For example, a docking object that 
represents a sales opportunity may include tables that represent the opportunity 

15 itself (e.g., named u S_OPTY"), the product whose sale is represented by the 
opportunity (e.g. , named "SJ^PTY_PROD ,, ), the contact for the opportunity 
(e.g., named "S^PTY^CONTACr), etc. Each of these tables is said to be 
a member table of the "Opportunity Docking Object." 

20 A Primary Table is a Member Table that controls Whether a particular 

instance of a Docking Object is visible to a particular node. The Primary Table 
has a Primary Row-ID value that is used to identify a row of the Primary Table 
being updated, deleted or inserted. For example, the "Opportunity Docking 
Object" may have as a primary table the table SOFTY. The row-id of that 

25 table, i.e.* S_OPTY.row_id, is the Primary Row-ID for the Opportunity 
Docking Object. 

A Visibility Rule is a criterion that determines whether a particular 
instance of a Docking Object is "visible" to ^particular node 21 . If a Docking 
30 Object is visible to a particular node, that node will receive updates for data in 
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the Docking Object. Visibility Rules are of two types, depending on the field 
RULE_TYPE. A Visibffity^ule-with a RULE_TYPE of "R" is referred to as 
an SQL Rule. An SQL Rule includes a set of Structured Query Language 
(SQL) statements that is evaluated to determine if any data meeting the criteria 
5 specified in the SQL statements exists in the Docking Object. If so, the 
Docking Object is visible to the node. A Visibility Rule with a RULETYPE 
of "O" is referred to as a Docking Object Rule. A Docking Object Rule 
specifies another Docking Object to be queried for visibiUty. If the specified 
Docking Object is visible, then the Docking Object pointing to it is also visible. 

A Related Docking Object is a Docking Object that is propagated or 
deleted when the Docking Object under consideration is propagated or deleted. 
For example, an Opportunity Docking Object may have related Docking 
, Objects representing the sales contacts, the organizations, the products to be 
15 sold, and the activities needed to pursue the .opportunity. When an Opportunity 
Docking Object is propagated from Central Database 3 to one of node databases 
23, the related docking objects are also propagated. 

Figure 2 depicts a database schema that shows the relationship of the 
20 ; various components that make up a Docking Object. The schema is a meta- 
database, in that .it does riot describe the data being accessed in the database. 
Rather, the schema* is a , separate database that defines the structure of the 
database being accessed. ■ That is; it is a database comprising tables that 
describe, the. relationships and data contexts of another database. 
25 Each of the tables shown in Figure 2 is a table in a relational database, 

and as such is in row-column form. Many columns represent fields that are 
common to all the illustrated tables. Such fields include for example, a 
ROWJD to identify a particular row in the table, as well as fields to tack the 
date and time that a row was created; and last modified, and the identity of the 
30 user who created, or modified the row. In addition, each table contains fields 
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specific to that table, and which are described in detail beiow. 

Table S_DOBJ 61 describes the Docking Objects in an application. 
Table SJDOBJ 61 includes the fields OBJ_NAME and PRIM AR Y_T ABLE_ID . 
5 Field OBJ_NAME defines the name of the Docking Object being described. 
Field PRIMARY_TABLE_ID is used to identify the primary table associated 
.* with this Docking Object. 

Table S_DOBJ_lNST 63 describes whether a particular instance of a 
10 Docking Object, described by table S_DOBJ 61, is present on a particular 
node's database, Table S_DOBJ_INST 63 includes the fields NODEJD, 
DOBJ JD and PRTBL_ROW_ID> Field NODEJD points to a particular node 
table 65. Field DOBJ^ID points to the Docking Object to which the Docking 
Object instance applies. Field PR_TBL_ROW_ID is used to select a particular 
15 row in the Primary Table of the Docking Object. This value identifies the 
Docking Object instance. 

Table S REL DOBJ 67 describes the related Docking Objects of a 
particular Docking Object* described by table S DOBJ 61. Table <> 

20 S_REL_DOBJ 67 includes the fields DOBJJD, REL_DOBJ_ID, and 
SQL STATEMENT. Field DOBJjlD identifies the Docking Object that owns 
a particular related Docking Object. Field REL_DOBJ_ID identifies the related 
Docking Object that is owned by the Docking Object identified by DOBJ ID. 
Field SQL_STATEMENT is an SQL statement that may be executed to obtain 

25 the Primary ID value of the related^ Docking Object: 

Table SJDOBJJTBL 69 describes the member tables of a particular 
Docking Object, described by table S_DOBJ 61. Table S_DOBJ_TBL 69 
includes the fields DOBJ JD, TBL_ID, and VIS_E VENTFLG . Field 
30 DOBJ ID identifies the Docking Object that contains 1 the member table 
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described by the row. Field TBLID identifies the particular table in the 
database that is the member table described by the row. Field 
VIS_EVENT_FLG is a flag that indicates whether a change to this Docking 
Object can result in a visibility event. A value of "Y" indicates that a change 
5 can result in a visibility event: a value of "N" indicates that it cannot. 

Table S_DOBJ_VIS_RULE 71 contains the visibility rules associated 
with a particular Docking Object. S_DOBJ_VIS_RULE 71 contains the fields 
DQBJJD, RULE JiEQUENCE, RULE TYPE, SQL STATEMENT and 

10 ,= CHECKDOBTID. Field DOBJJD identifies the Docking Object with which 
a particular visibility rule- is associated. Field RULE_SEQUENCE is a 
sequence number that indicates the sequence, relative to other visibility rules 
in table SDOBJVISRULE 71, in which the particular visibility rule should 
be run. RULE_TYPE specifies whether the particular visibility rule is of type 

15 "R," indicating an SQL visibility rule or of type "O," indicating a Docking 
Object visibility rule. 

If RULE_TYPE is equal to "R," field CHECK_DOBJ_ID is not 
meaningful^ and field SQL_STATEMENT contains an SQL statement that is 
20 evaluated using the Primary ROW-ID of the primary tabie associated with this 
Decking Object and a particular Node 21. If the SQL statement returns any 
records, the Docking Object is deemed to be visible to the Node 21 for which 
visibility is being determined. 

25 . If RULE_TYPEis equal to "O, M both field GHECKJDQBJJD and field 

SQLJSTATEMENT are meaningful. Field CHECK_DOBJ_ID specifies a 
docking object whose visibility should be determined/ If the specified docking 
object is deemed to be visible, then the docking object associated with the 
visibility rule: is also visible. Field SQL STATEMENT contains a SQL 

.30 statement that, when executed, returns the Row-ID of the docking object 
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identified by CHECK_DOBJ ID that corresponds to the docking object instance 
associated with the visibility rule. 

Table S_APP_TBL 73 is an Application Table that describes all the 
tables used in a particular application. It is pointed to by table S_DOBJ_TBL 
5 69 for each member table in a docking object, and by table S_DOBJ for the 
primary table in a docking object. SAPPTBL 73 points to table 
SAPPCOL 75, which is an Application Column Table that describes the 
columns of data in a particular application. S APP TBL 73 points to table 
S_APP_COL 75 directly through a primary key and indirectly through such 
10 means as a Foreign Key Column Table 81, User Key Colurhn Table 83, and 
Column Group Table 85. The relationship of an Application Table, 
Application Column Table, Foreign Key Column Table, User Key Column 
Table and Column Group Table are well known in the art and are not further 
described. ; 

15 

Update Processing 

Figure 3 depicts steps performed by an update manager 31 such as 
update manager 31 -a, 31-b or 31-c in updating a database, such as a node 
database 23-a v 234> or 23-c, responsive to user input. Execution of update 

20 manager 31. begins in step 101. In step 103, the update manager 31 accepts 
from the user input 33 in the form of a command requesting that the data in 
database 23 be altered. The request may be in the form: of a request to delete 
a row of a table, to add a row to a table, or to change the value of a cell at a 
particular column of a particular row in a table. In step 105, using a well- 

25 known means,; the update manager 31 applies the requested update to database 
23, In step 107, the update manager 31 creates a log record describing the 
update and writes it to update log 35/ • 

The contents of a log record describe the update made. Each log record 
30 indicates the node identifier of the node making the update, an identification of 
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the table being updated, and an identification of the type of update being made, 
i.e., an insertion of a new row, a deletion of an existing row, or an update to 
an existing row. For an insertion, the log record additionally includes an 
identifier of the row being inserted, including its primary key and the values 

5 of the other columns in the rpw. For a deletion, the log, record identifies the 
primary key of the row being deleted. For an update, the log record identifies 
the primary key of the row being updated, the column within the row being 
updated, the old value of the cell at the addressed row and column, and the 
new value jof the, cell. 

10 t ...... ..... 

After writing a log record in step 107, the update processor exits for this 
update. The foregoing description of the update processing preferably includes 
additional steps not material to the present invention, for example, to assure 
authorization of the user to make the update, to stage and commit the write to 

15 the database to allow for rollback in the event of software or hardware failure, 
and the like. These steps are well-known in the art and are not described 
further. 

An update manager 11 executing in central computer system 1 operates 
20 in an analogous manner, except that it updates central database 3 and writes its 
log records to central update log 11. 

Dockin g Proc essin g . , 

Figure 4 depicts steps performed by a Docking Manager 25 such as 

25 Docking Manager 25-a, 25-b or 25-c to transmit and/or .receive one or more 
transaction logs. Docking Manager 25 is invoked by the user of a remote node 
such as node 21 r a, 21-b or 21-c, whereby the user requests that the node dock 
with central computer 1 to upload an update log such as update log 35-a to 
central computer 1 , to download a partial log such as partial log 17-a, or both. 

30 Execution of Docking Manager 25 begins in step 121. In step 123, Docking 
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Manager 25 connects with central computer 1 under the control of Central 
Docking Manager 5. This connection can be any connection that enables data 
exchange. It is anticipated that the most common form of a connection is a 
telephone line used in conjunction with a modem, but other forms of data 

5 connection, such as a Local Area Network or a TCP/IP connection may also 
be used. Step 125 checks to see whether the user has requested that node 
update log 35-a be uploaded to the Central Computer 1. If so, execution 
proceeds to step 127. If not, step 127 is skipped and control is given to step 
129. In step 127, Docking Manager 25 uploads its update log to central 

10 computer 1, The upload may be accomplished with any known file transfer 
means, such as XMODEM, ZMODEM, KERMIT, FTP, ASCII transfer, or 
any other method of transmitting data. In step 129, Docking Manager 25 
checks to see whether the user has requested that a partial log such as partial 
log 17-a be downloaded from Central Computer 1. If so, execution proceeds 

15 to step 131. If not, step 131 is skipped and Control is given to step 133. In 
step 131, Dockihg Manager 25 downloads its partial 16g from central computer 
1. The download may be accomplished with any known file transfer means, 
such as XMODEM, ZMODEM, KERMIT, FTP, ASCII transfer, or any other 
method of transmitting data. In step 133 , having completed the requested data 

20 transfer, Docking Manager 25 6xits. 

Merge Processing 

Merge processing is performed by a processor such as node merge 
processor 27-a, 27-b, of 27-c, or central merge processor 7. The merge process 

25 serves to update its associated database with a transaction that has been entered 
by ii user of a computer remote fr6m the computer where merge processing is 
1 being performed; Merge processing is analogous to update processing and is 
similar in form to update processing as previously disclosed with reference to 
figure 3, with three differences; First, the input to a merge processor is not an 

30 update entered directly by a user, but rather is a log file that is obtained from 
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a computer remote from the computer where the merge is executing. A second 
difference is that, as shown by in Figure 1 , merge processing does not produce 
a log when performed at a node; The function of a log on a node is to record 
a transaction for propagation to-Central Computer system 1 and thence to other 
5 nodes as required; A transaction that is the subject of a merge in a node has 
been communicated to Central Computer System 1 ; and there is no need to re- 
communicate it. 



A third difference is that merge processing must be capable of detecting 
10 and resolving multiple conflicting transactions. For example* assume that a 
field contains the value "Keith Palmer. " Assume further that a user at node 27- 
a enters a transaction to update that field to "Carl Lake," and a user at node 27- 
b enters a transaction to update the same field to "Greg Emerson." Without 
collision detection, data among various nodes may become corrupt. When the 
15 transaction for user 27-a is merged, the field is updated from "Keith Palmer" 
to " Carl Lake . " Without collision handling; when the transaction for node 27-b 
is merged, the field would be updated to "Greg Emerson," and the central 
: database would '-then be out of synch with the database of node 27-a. 
Furthermore, when merge processing is performed on each of nodes 27-a and 
20 27-b, each node will update its database with the other's transactions, leaving 
; at Jeast one. node out of synch with the other node and with central database. 

Therefore, merge processing must also have a means of detecting 
collisions and correcting them. In the above example, a simple way to detect 

25 and correct a collision is = to compare the value in the database to the value that 
the merge log reflects as being the previous value in the node database. If the 
two values do not match, Merge processor 7 may reject the transaction and 
generate a corrective transaction to be sent- to the node from which the 
conflicting transaction originated. In the 1 above example, when the transaction 

30 for node 27-b was presented to merge processor 7, merge processor 7 would 

-16- 



WO 98/38762 PCT/US98/02756 

compare "Keith Palmer," the prior value of the field as recorded by node 27-b 
to "Carl Lake," the present value of the field as recorded in central database 
3 . Detecting the mismatch, merge processor 7 may then generate a transaction 
to change the value "Greg Emerson" to "Carl Lake," and write that transaction 
5 to update log 15. In a subsequent docking operation, that transaction would be 
routed back to node 27-b to bring' its database 23-b in synch with the other 
databases. 

The above is one example of a collision and a resulting corrective action. 
10 Other types of collisions include, for example, an update to a row that has 
previously been deleted, inserting a row that has previously been inserted, and 
the like. Merge processing must detect and correct each of these collisions. 
This may be performed using any of a number of well-known methods, and is 
not discussed further. - , 

Figure 5 depicts, the steps performed by merge processor such as central 
merge processor 7. Although it depicts merge processor 7 writing to central 
database 3 and to transaction log 15, it is equally representative of a node 
merge processor such as node merge processor 27-a, 27-b or 27-c updating a 

20 node database 23-a, 23-b or 23-c. Merge processing begins at step 141. In 
step 143, merge processor 7 finds the first unprocessed transaction on received 
log 19. In step 147, merge processor 7 selects a transaction from received log 
19* In step 149, merge processor 149 attempts to update database 3 according 
to the transaction selected in step 147; In step 151, merge processor 7 

25 determines whether the database update of step 149 failed due to a collision. 
If so, merge processor proceeds to step 153, which generates a corrective 
transaction. Following the generation, of the corrective transaction, the merge 
processor returns to step 149 and again attempts to update database 3. If no 
collision was detected in step 151 , execution proceeds to step 157. In step 157, 

30 merge processing checks to see if it is executing on central computer 1 . If so, 
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step 155 is executed to journal the transaction to log 15. In any case, either if 
step 157 determines that the merge processing is being performed on a node or 
after step 155, execution proceeds to step 159. Step 159 checks to see if any 
transactions remain to be processed from log 19. If so, execution repeats from 
5 step 147, where the next transaction is selected. If not, merge processing exits 
in step 161. 

Lo g Management . 

Figure 6 depicts the steps to be performed by log manager 9 to prepare 

10 a partial transaction log such as partial transaction log 17-a, 17-b, or 17-c. The 
procedure depicted in Figure 6 is executed for each node available to dock with 
central computer system 1. Log manager 9 begins execution in step 171. In 
step 173, Log Manager 9 finds the first unprocessed transaction for the node 
whose partial transaction log is being prepared. In step 175, log manager 9 

15 selects a transaction for processing. In step 177, log manager 9 checks to see 
whether the selected transaction originated on the same node for which 
processing is being performed . If so, there is no need to route the transaction 
back to the node, and control proceeds to step 179. Step 179 checks to see 
whether there are any transactions remaining to be processed. If so, control is 

20* ^given again to step 175. If not, control passes to step 189, which records the 
last transaction that was processed for this node, and then exits at step 191. If 
the transaction originates in other than the same node as the node for which 
processing is being performed, control is given to step 181. Step 181 calls a 
visibility calculator to determine whether the selected transaction is visible to 

25 the node being processed. The Visibility calculator routine is described in 
detail further herein. In step 183, merge processor 9 checks to see whether the 
visibility calculator determined that the t transaction is visible. If it is not 
visible, control is passed to step 179, which performs as disclosed above. If 
the transaction is visible, control is passed to step 185. Step 185 writes a 

30 record for this transaction to the partial transaction log for the node being 
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processed, for example, partial transaction log 17-a for node 21-a. In step 187, 
the log manager 9 records the last transaction that was processed for this node, 
and then passes control to siep 179, which determines whether to select 
additional transactions or exit, as disclosed above. 
• 5 : ■'■ ' ' " " 

Visibility Calculation 

Figure 7 depicts a flowchart describing the process a visibility calculator 
for calculating visibility for a docking object as invoked by step 181 of log 
manager 9. The visibility calculator is called with the node-id of the node for 
10 which visibility is being calculated, the docking object for which the visibility 
is being calculated, and the row-id of the docking object whose visibility id 
being calculated. The visibility calculator uses this information; in conjunction 
with information obtained from meta-data stored in the schema depicted in 
Figure 2, to determine whether a particular transaction that updates a particular 
15 row of a particular docking object is visible to a particular node. 

The Visibility calculator begins execution at step 201 . In step 203, the 
visibility calculator makes a default finding that the transaction is not visible. 
Therefore, 1 unless the visibility calculator determines that a transaction is 

20 visible, it will exit with a-fendingnofTio visibility. In step 205, the visibility 
calculator selects the first visibility riile associated with the docking object. 
This is done by finding the table S_DOBJ_VIS_RULE 71 associated with the 
current Docking Object as pointed to by table S DOBJ 61 . In step 205, the 
visibility calculator selects the row of table S_DOBJ_VIS_RULE 71 with the 

25 lowest value for field RULE_SEQUENCE; 

In step 207, the Visibility Calculator checks the field RULETYPE for 
a value of U R." The value of T indicates that the rule is a SQL visibility 
rule. If so, the Visibility Calculator proceeds to step 209. In step 209 the 
30 Visibility Calculator obtains a SQL statement from field SQLjSTATEMENT 
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An example of such an SQL statement might be: 



SELECT 'X' FROM SJ5PTYJEMP 
WHERE OPTYJE) = : Primary Rowld 
5 AND EMPJD = :NodeId; 

This SQL statement causes a query to be made of application table 

S_OPTY_EMP. The query selects any records meeting two criteria. First, the 

records selected must have a field OPTYID, which is a row id or key, equal 

10 to the Primary Row-ID of the Docking Object whose visibility is being 
determined. Second, the records selected must have a field EMP_ID, which 
may be for example, an identifier of a particular employee, equal to the Nodeld 
of the node for whom visibility is being determined. In ordinary language, this 
SQL statement will return records only if a row is found in a table that matches 

15 employees to opportunities, where the opportunity is equal to the one being 
updated, and the employee to whom the opportunity is assigned is the operator 
of the node. 

This is a simplistic example, provided for maximum comprehension. 
20 More complex SQL statements are possible. For example, the rule: 
SELECT 'X' FROM 

&Table^Owner.S^ACCT_POStTN ap . < 
&TableJ)wner.S~EMPJ>OSTN ep 
WHERE ap.POSmONJD = ep.POSITIONJD 
25 AND ep.EMP J±> = rNodeld; 

This rule queries the tables S_ACCT_POSTN (which relates a particular 
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account with a particular position in the organization that is responsible for the 
account) and S EMP POSTN (which relates what employee corresponds to a 
particular position). The condition "ap. POSITIONED = ep.POSmONJD" 
requires finding a row in the account-to-position table that has the same position 

5 as a row in the employee-to-position table. The condition "ep.EMP__ID = 
:NodeId" further requires that the selected row in the employee-to-position table 
also have an Employee ID equal to the ID of the user of the Node for which 
visibility is being determined. In ordinary language, this condition allows 
visibility if the employee occupies the position that has responsibility for the 

10 account in the docking object being updated. 

There is no particular limit to the complexity of the conditions in the 
SQL statement used to evaluate visibility. Particular implementations of SQL 
may impose limitations, and resource considerations may make it desirable to 
15 use less complex statements, but these limitations are not inherent in the 
invention. 

Step 21 1 evaluates whether the execution of SQLSTATEMENT in step 
209 returned any records. If records were returned, this indicates that the 
20 Node for which visibility is being checked has visibility to the docking object 
being processed. Accordingly, if records are returned, the Visibility Calculator 
proceeds to step 213; In step 213, the transaction is marked visible. Because 
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no further rules need to be evaluated to determine visibility, the visibility 
calculator proceeds to step 228. Step 228 synchronizes the databases by 
determining whether the calculated visibility requires the insertion or deletion 
of a docking object into a particular node's partially replicated database. This 
5 may occur, for example, if a node is determined to have visibility to a docking 
object due to. a change to a related docking object. For example, an owner of 
a node may be assigned to a particular activity that is related to a particular 
sales opportunity. As a result, the node should be provided with a copy of the 
object representing the sales opportunity, 

.10 ., . 

Figure 8 depicts the steps performed to synchronize a partially replicated 
database in response to a change in datai visibility. Execution begins in step 
241. In step 243, the Visibility Calculator references the visibility just 
calculated for a docking object. If the Docking Object is visible, execution 

15 proceeds to step 2f£ . Step 245 references the S_DGBJ_INST table, to verify 
that a row exists for the Docking Object for the current node. If a row exists, 
this indicates that , the node in question already* has a copy of the referenced 
Docking Object; and the routine proceeds Jo step 255, where it exits. If, 
however, no row exists for the Docking Object at the node being processes, 

20 this indicates that the node in question does not have a copy of the Docking 
Object on its partially replicated database. The routine then proceeds to step 
247, where a transaction is generated to direct the node to insert the Docking 
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If step 243 determines that the Docking Object is not visible, execution 
proceeds to step 249. Step 249 references the S_DOBJ_XNST table, to verify 
5 that no row exists for the Docking Object for the current node. If step 243 
determines that no row exists in the S_DOBJ_INST table for the current 
docking object for the current row, this indicates that the node in question does 
not have a copy of the referenced Docking Object, arid the routine proceeds to 
step 255, where it exits. If, however, a row exists for the Docking Object at 
10 the node being processed, this indicates that the node in question does have a 
copy of the Docking Object on its partially replicated database. The routine 
then proceeds to step 251, where a transaction is generated to direct the node 
to delete the Docking Object from its partially replicated database, 

15 Referring again to Figure 7, following the data synchronization routine 

of step 228, the Visibility Calculator proceeds to step 229, where it exits. 
Referring to Figure 6, as previously described, the resulting finding of visibility 
is available to be checked by the log manager in step 1 83 to determine to write 
the transaction. 

20 . : . v } .. 

Referring again to figure 7, if step 21 1 determines that no records were 
returned by the execution of the SQL statement in step 209, execution proceeds 
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with step 215. Step 215 checks to see whether there are any remaining 
visibility rules to be assessed. If not, the visibility calculator proceeds to step 
228 to synchronize the database, and then to step 229, where it exits. In this 
case,, the default mark of no visibility that was set in step 203 remains set. 

5 This value will also be used by the log manager as shown in Figure 6, step 
183, to determine not to write the transaction. 

Referring again to Figure 7, if rules remain to be assessed, control 
proceeds to step 217, which selects the next rule to be processed. Control is 
10 then given again to step 207 to begin processing, the new rule. 



The preceding text provided a description of the processing or SQL 
visibility rule; that is, visibility rules of type "R. If step 207 determines that 
the visibility role is not of type "R/ the visibility rule is of type "O." Type 

15 "O" indicates a docking-object visibility rule. In such a case, the docking 
object being processed will be considered to be visible if it is related to a 
particular related docking object that is visible. If field RULE_TYPE is not 
equal to "R," then, execution proceeds to step 221. Step 221 determines the 
related Docking Object whose visibility must be determined to determine 

20 whether the current docking object is visible. The related Docking Object 
identifier is obtained from field CHECK J30BJJD in table 
SJDOBJ_VIS_RULE 71. , In step 223, the Visibility Calculator determines 
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which row in the related Docking Object must be queried for visibility. In 
order to determine this, the Visibility Calculator obtains a predetermined SQL 
statement from the field SQLJSTATEMENT and executes it. The SQL 
statement is a query that select one or more rows of the Docking Object that, 
5 for example, correspond to the docking object for which the Visibility 
Calculator was invoked. 

For example, assume that it is desired to indicate that a record for a 

sales opportunity should be visible if the Node has visibility to any sales quote 

10 made for that sales opportunity. This may be accomplished using the following 

SQL statement: 

SELECT" JD" FROM 

&Table_Owner.S_DOC_QUOTE 
WHERE OPTYJQD== : Primary Rowld 

This SQL statement accesses a table SJDOC QUOTE that contains all 

sales quotes: The WHERE clause specifies retrieval of all rows where the 

Opportunity ID of the row is equal to the Row-ID of the opportunity for which 

visibility is being calculated. The Visibility manager retrieves the specified 

20 Row-Ids, thereby identifying the rows of the S_DOC_QUOTE table whose 

visibility must checked. 

Having determined the- a related docking object and the row-ID of that 
related docking object upon whose visibility the visibility of the current docking 
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object depends, the Visibility Calculator proceeds to step 225, In step 225, the 
Visibility Calculator recursively invokes itself to determine visibility of the 
related docking object. The recursively invoked Visibility Calculator operates 
in the same manner as the Visibility Calculator as called from the Log Manager 
5 9, including the capability to further recursively invoke itself. When the 
recursive call concludes, it returns a visibility indicator for the related Docking 
Object, and control proceeds to step 227. In Step 227, the Visibility calculator 
determines whether the related Docking Object was determined to have been 
visible. If so, the Visibility Calculator proceeds to step 213 to mark the 
10 originally current Docking Object as visible, and then to step 228 to 
synchronize the database and then to step 229 to exit. If the related Docking 
Object was not determined to be visible, control proceeds to step 215 to 
determine whether additional visibility rules remain to be assessed. 

. The Visibility Calculator, in conjunction with the Log Manager is 
15 therefore able to determine what subset of update transaction data is required 
to be routed to any particular node. This operation serves to reduce the 
transmission of unneeded; data from the Central Computer 1 to the various 
nodes such as nodes 21 -a, 21-b and 21^c that utilize partially replicated 
databases, and to reduce the system resources such as disk space needed to 
20 store, and the CPU time needed to process; what would otherwise be required 
to maintain a fully replicated database on each remote node. 
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The operation of the log manager 9 in conjunction with the Visibility 
Calculator herein described will be apparent from reference to the description 
and to the drawings. However, as a further aid in the description of these 
facilities, a pseudocode representation of these facilities is hereto attached as 

5 an Appendix; 

Internet Session Manager 

The following terms will' be used in describing the Internet Session 
Manager: 

10 • SISM: Siebel Internet Session Manager (also referred to as Internet 
Session Manager). 

• SISMGR: The application server which implements SISM (the program 
itself). 

• SIS API: The client-side application programming interface for 
15 communicating with the SISM server. 

The Internet Session Manager provides database functionality and access 
to mobile clients that are connecting via a wide area network such as the 
Internet, a corporate intranet, or a commercial online provider. The 
20 functionality and access thus provided to mobile clients is comparable to that 
of clients connected to the central database via a local area network. The 
Internet Session Manager also provides security for data that flows between the 
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Overview of Internet Session Manager 

SISMGR is a new application server process which currently runs on 
5 Windows NT, but may be ported to later versions of Windows NT and to 
UNIX. One or more instances of SISMGR run continuously on a machine to 
accept connections from remote clients. Each client connection "into" SISMGR 
corresponds to a database connection " from " SISMGR, which essentially acts 
as the connector between the client and the database. Thus, a machine running 

10 SISMGR is configured as a networked proxy server. The overall structure of 
system using the Internet Session Manager is shown in Figure 9. SISMGR has 
several advantages over a direct SQL connection such as Oracle's SQL*Net): 
1. Security for data which flows between the client and server. 
2 f True access control for client authentication. 

15 3. Central monitoring and control of remote access. 

Data Security 

SISMGR addresses several methods of intercepting the data transferred 
between the client and SISMGR:, ; 
20 4. No one besides the two parties (mobile client and SISMGR) should be 
, . able to read the contents of the transmissions . 
5. No one should be able to alter the data during transmission and have the 
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results accepted. 

6. No one should be able to replay parts of a previous transmission and 
have the results accepted. 

5 These three types of attacks are primarily addressed through encryption. 

Encryption techniques fall into two basic categories: public key and private key 
cryptography . Private key cryptography uses a key which must be kept secret 
(hence the "private"), and is very secure as long as the key is not 
compromised. Encryption and decryption aire rapid, and private key encryption 

10 is used to transmit the bulk of the data in secure systems. Public key 
cryptography techniques provide encryption and decryption through a pair of 
keys, designated as the "private key" and the "public key" (although they are 
interchangeable). The power of this technique is that one key can be given to 
the world and one kept secret. The "trick" of public key cryptography is that 

15 data encrypted with the public key can only be decrypted with the private key 
and vice versa. Thus a message can be encrypted (with the public key) which 
can only be decrypted by the intended recipient arid a: message can be verified 
as having been sent by a person if it can be decrypted with that person's public 
key. Further discussion may be found in "PGP: Pretty Good Privacy" by 

20 Sitnson Garfinkel, and U.S. Patents No, 4,405,829, 4,218,582, 4,424,414, and 
4,200,770, the disclosures of which are hereby incorporated by reference. 
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SISMGR uses a session key and sequencing to provide a secure 
communication channel. The first packet sent by the client contains the client's 
public key, which can be verified by the server against an internal database or 
trusted certification authority (C A). The server reply contains a session 

5 identifier (unique for each communication session) and a session private key 
(randomly generated by the server) and will be encrypted with the client's 
public key. All further messages in both directions are encrypted with the 
session key using private key cryptography. All messages will contain the non- 
repeating session identifier allocated by the server, which prevents messages 
10 from being replayed in another session. Each message in a session has a 
monotonically increasing identifier to prevent messages from being replayed in 
or removed from the session. 

Access Control 

15 In addition to preventing communications between legitimate users from 

being intercepted, it .is necessary to prevent illegitimate users from gaining 
access to SISMGR. This is especially important in implementations where all 
Visibility Rule checking is performed by the client and access to SISMGR 
provides full access to the corporate database, but is still of importance in 

20 implementations where Visbility Rule checking is performed by the Central 
Computer 1. 
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Access control prevents both illegitimate use of the Siebel client 
application as well as special programs which pretend to be clients. As in all 
security systems, the weak link is keeping the private key from getting out. 
Thus, the private key is stored in encrypted form on the user's laptop, and the 
5 user must enter a password (or phrase) to unlock his/her private key. 
Otherwise, anyone with access to the laptop would have access to the corporate 
database. The user must still enter his/her database name and password to 
actually log in. 

10 One skilled in the art will recognize that hardware-based authentication 

schemes, such as those which use PCMCIA or flash memory cards to hold the 
keys and possibly perform the encryption, may be used without departing from 
the spirit or scope of the present invention. 

Monitoring and Control 

The SISMGR keeps a list of hosts which are allowed to connect. 
Connections from hosts or network addresses which are not listed will be 
rejected. This helps avoid attacks from systems which should not have access. 
An access control list is of particular utility on an intranet where all points of 
access are known in advance. Further details of the access control list will be 
described below. 



15 



20 
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In an alternative embodiment of the invention, SISMGR may include 
security auditing tools which check for patterns of behavior which might 
indicate attacks on the system, such as logins outside typical working hours, 
many failed login attempts, or sessions with atypical query patterns. Further, 
5 there could be a mechanism for evaluating the load and response time for 
clients, to enable system administrators to ensure good throughput at peak 
times. 
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Architecture , 

The functionality, of the Internet Session Manager is implemented in a 
common DLL (ssasis30.dll) and a number of connector DLLs (such as 
sspc30o72.dll for Oracle). . A, simple, executable wraps this functionality to 
produce a server. SISMGR is a main routine which links in and initializes the SISM 
DLL and displays errors on the console. In another embodiment, this functionality 
may be implemented as a Windows, NT service which has no user interface at all. 

Also part of the SISM functionality is the "SIS network API," also a DLL 
(ssasna30.dll) which encodes and decodes the messages which flow back and 
forth between the mobile client and the SISMGR. The actual messages, their 
parameters, and the actual format of the data are aU defined in the SIS network API. 

As will be described below, the present embodiment of the invention defines 
a set of messages which aUow the client to implement a connector which executes its 
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SQL operations using the SIS network API to talk to the SISMGR. However, the 
architecture may be extend^ierprovide further functionality for mobile clients. For 
example, an "object manager" t server may be used to implement a "thin client' 
interface and even alternate clients. 



10 



Malibu 



SSA 



Internet connecter 



SIS network API 



SISMGR 



SISM DLL 



SIS network AP! 



Client SISMGR 
This implementation essentially moves the actual database connection (the code 
which talks to the database vendor APIs) out of the client process and into the 
SISMGR process. This permits the imposition of additional restrictions and provides 
complete central control over the data which passes across the connection between the 
client and the database server. ; ; , 
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SISMGR provides a session-oriented protocol as part of the security setup. 
The first message sent by a client hrtust be a HELLO message, which establishes the 
client authentication and creates a session ID which is used by all remaining requests 
in this session. The details of the HELLO message (and all other messages) can be 
found in the sisnapi . h header file below. 



SISMGR supports direct SQL access, .messages which provide direct support 
for the client connector operations. The messages in this group all translate directly 
into database operations, although a single message may logically correspond to 
multiple database API calls. Before any other SQL operations can be performed, the 
user must log into the SQL database. This is done with the LOGIN message, which 
takes database connection information. The LOGOUT message terminates a login 
session. Only a single login session may be active at once for a client. 
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Actual SQL statements are always executed against a "statement context." 
This statement context corresponds to an ODBC HSTMT or an Oracle cursor. 
(ODBC, or Open DataBase Connectivity, is a specification for an API that enables 
applications to access multiple database management systems using SQL. HSTMT 
5 a statement handle.) Before an actual SQL statement can be executed, a statement 
must be allocated with the ALLOCSTMT message (which returns a HSTMT). 
Statements can be freed with the FREESTMT message or simply re-used for another 
SQL statement. These statement IDs must be specified for executing statements and 
fetching rows. 
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The EXEC message is used to execute a SQL statement (usually a DML, or 
Data Manipulation Language, statement) one or more times with different bind 
variables. Because no output is returned from the statement, this cannot be used for 
queries. However, the ability to re-execute the statement for each set of bind 
variables is very useful for reducing round trips for repetitive operations. The 
QUERY and FETCH messages provide query support. QUERY is sent to begin a 
new query statement and return the first.batch of results. FETCH is used to get the 
next batch of results. The size of the result set can be specified in QUERY to limit 
the number of rows fetched by each request. The COMMIT and ROLLBACK 
messages are provided to commit and roll back database transaction operations. The 
EXEC message , can also request that a commit be performed if the operation is 
successful without requiring an explicit COMMIT message be sent. 

To support literature and correspondence (fulfillment), SISMGR provides 
simple file services. Basic file-oriented operations can be performed for files by 
specifying file names relative to the root directory configured into the SISMGR. 
Information about files can be obtained by using , the FILEINFO message, which 
returns standard file information but does not actually opera the file. To open a file 
and allocate a -file ID" which.is used by the other operations on this section, the 
FILEOPEN message is used. FILEOPEN returns roughly the same information as 
returned by FILEINFO, plus the file ID. Files are closed after use with the 
FILECLOSE message. Files are read from and written to using the FILEREAD and 
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FILEWRTTE messages. These operate very similarly to the standard file operations 
and their use is well known in the art. In the present embodiment, one restriction is 
that a file may only be opened for reading or writing, not both. Opening a file for 
write always truncates the existing cohients (if any) and creates the file if it does not 
5 exist. " 

Also provided are high-speed (tuned) connectors for the different databases as 
part of SISM, in the same way that these connectors are provided in the client. The 
SISM connectors are simpler than the client connectors because they do not need to 
10 know how to format statements. They need only execute them, collect results, and 
handle errors. 

The abstract class CSSSISDbConn (declared in sismcon.h) defines the 
template which each connector function must follow, and defines the interface which 
15 database-specific connectors must implement to support the SISM client database 
operations. The templates correspond roughly to the ANSI cursor model, but with 
some compression to reduce round trips. The date passed to the functions is taken 
directly out of the messages with little translation by SISMGR, but the connectors are 
not themselves dependent on the message format. * 

.20 = r 

An instance of a sub-class of CSSSISDbConn is created for each client 
connection when it attempts to log in. The client passes information about which 
database it wants to log into and the user name and password of the user to log in as. 
SISMGR maps the requested "database" into the database-specific information as it 
25 validates the request. 

, Each client request is translated into one or more calls to this API, which is 
structured slightly differently from the messages for simplicity. The main goal of the 
V message API is to minimize round trips. The main goal of the connector API is to 
30 : be easy to implement, v 

SISMGR is a multi-threaded program, and each client instance runs in its own 
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thread. As is the case everywhere else in SISMGR, the connector implementations 
must be careful to be miiHLTthraadmg-safe. If necessary, synchronization objects 
implemented in SISMGR can be used, but this will probably reduce throughput when 
many clients are connected. 

5 / 

• Further details of GSSSISDbConn, related code, and the functionality may be 
seen in the following sismcon.h code: 

// FILE: sismcon.h 
10 // DESCRIPTION 

//,.... 

// Generic DB-specific connector class for Internet Session Manager. 

#ifndef _SISMCONH_ 
ID ttdefine SISMCONH ^ 
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#ifndef SISNAPI H 

' "# include " e i snap i . h '• 
#ehdif 



class CSSSISDbStmt ; 
ttdefine MAX_NOM_STMTS 256 
25 class SS_EXPORT_CLASS CSSSISDbConn : public CSSSISObject 

. . protected: 

BOOL m_bConnected; 

CSSSISDbStmt* m_dbStmtArray [MAX_NUM_STMTS] ; 



public: 

// ! 



35 called Wh6n ^ Client 8endS a WGIN re< 3u«t, the Login method is 

// this should perform any database -specific login operations and 

// return an appropriate error status. Logoff performs the revere 

// ?^i^ 10n? 3X16 free ^ all; resources associated with the prevloul 

40 // 9 

// r«cT^ Sin ^ s ther ? is 311 instance of a concrete sub- class of 

// 2fS "DJConn f or each client, the database login is one-to-one 

// with the instance of CSSSISDbConn. Thus both session and login 

45 // information should .be stored in members of the sub- class. 

virtual BOOL DoLogon (const char* plnstance, 

const char* pDserName, 
B a«t : • const char* pPassword) = 0; 

50 virtual BOOL , LO gon (const char* plnstance, 

const char* pUserName, 

. ' „ _ const char* pPassword) • 

virtual BOOL DoLogoff (void) =0; 

virtual BOOL Logoff .(void) .; 



// So a ;it t6m ^l | xecut i n 9 APIs parallel the SISM request messages 
// closely. The Execute call prepares a SQL statement and then 
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executes it a specified number of times, each time with a 
different set of bind variables. If no bind variables are 
given, the statement . should be executed once. 



II 
II 
II 
II 
II 
II 
II 
II 
II 

virtual BOOL 



No output values are expected from the Execute statement and 
no persistent cursor information should be maintained. The 
number of rows affected (a sum of all executions) should be 
returned to the caller through the last parameter. 



Execute (SXSStmtld 

CSSSISColRowData* 
int& 



stmtld, 
pIBinds, 
numAff ected) 
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virtual BOOL 



Exe cu t e AndFe t ch 



II 
II 
II 
II 
II 
II 
II 
II 
II 
II 
II 

virtual 



(SISStmtId stmtld, 
CSSSISColRowData* pIBinds , 
CSSSISColRowData*& pFetched, 
int& numFetched) ; 



For statements which return output. (SELECT statements) , we use 
the ANSI model of preparing the statemeht and executing it and 
then fetching results. The prepare must open, a cursor which 
is returned to the caller for future, calls to Fetch and finally 
a call to Close. 

The fetch function takes an argument of the number of rows to 
fetch (at most) and an indicator for whether this drains the 
cursor. This information is returned to the client. 



BOOL 



virtual BOOL 



virtual BOOL 
virtual void 
virtual BOOL 



Prepare (SISStmtId 

const char* 
CSSSISColRowData* 

Fetch (SISStmtId 

CSSSISColRowData*^ 
• ; int& 
BOOL& 

AllocStmt <SISStmtId& 
DoFreeStmt (CSSSISDbS tmt* 
FreeStmt (SISStmtId 



stmtld, 
pStmt, 
pOBinds , 
nMaxFetch) ; 

stmtld, 
pFetched, 
numFetched, 
bEOF) ; 

stmtld) = 0; 
pDbStmt) = 0; 
stmtld) ; 



45 // 

// For maintaining the transaction state, the Commit and Rollback 

// methods perform the DB operations . 

// 

virtual BOOL Commit (void) a 0; 

50 virtual BOOL Rollback (void) = 0; 



55 
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^ virtual void 

protected: 
virtual * 



private: 

BOOL GetStmt 



Release (void) 



0; 



CSSSISDbConn (void) ; 
-CSSSISDbConn (void) ; 



(SISStmtId stmtld, 
CSSSISDbStmt*& pDbStmt) ; 



65 }; 
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class SS_EXPORT_CIASS CSSS.TSDbStrat : public CSSSISObject 



{ 

protected: 

CSSSISDbConn* 
CSSSISColRowData* 



m__pDbConn; 

m_pOutputBindColData ; 
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50 



virtual 


BOOL/ 


DoExe cii t e AndFe t tih 


virtual 


BOOL 


> DcFetch 


virtual 


BOOL 


DoPrepare 


virtual 


BOOL 


Execute 




BOOL 


ExecuteAndFetch 




BOOL 


, Fetch: 




BOOL 


Prepare ' 



55 



public: ' 

CSSSISDbStmt (CSSSISDbConn* pDbConn) ; 
virtual -CSSSISDbStmt (void) ; 



intt numFetched) = 0; 
(int& numFetched, 
BOOL& bEOF) = 0; 
(const char* pStmt, 
CSSSISColRowData* pOBinds, 
int nMaxFetch) = 0; 
(CSSSISColRowData* pIBinds, 
int& numAff acted) = 0; 
(CSSSISColRowData* pIBinds, 
CSSSISColRowData*& pFetched, 
int& numFetched) ; 
{CSS£ISColRowData*& pFetched, 
int& numFetched, 
BOOL& bEOF) ; 
(const char* pStmt, 
CSSSISColRowData* pOBinds, 
, int nMaxFetch) ; 

// 

// Each DLL which- implements a specific database connector must have 
iinylT eXported f^tion named Creates ISDbConn which takes as its 

// argument a reference to a CSSSISDbConn* into which it will return 
y/ the constructed instance of a sub- class of CSSSISDbConn. 

// The typedef here gives the format of the function which must be 
// implemented by the connector. All other methods implemented by 
// the connector are done as methods on the constructed CSSSISDbConn 
/ / instance . 

typedef BOOL (*SIS_CREATE_FN) (CSSSISDbConn*&) ; 
#endif .// J^SISMCONJI^ • 

One important dafr-STnicture defined in the SIS network API is 
CSSSISColRowData (declared in sisnapi. h) which is the buffer which holds rows 
and columns of data input bind variables to SQL statements and rows of data output 
by a query. For efficiency, these data structures are passed directly back and forth 
between the connector methods and the messages sent and received by SISMGR. 
This avoids' excess data copying. Further details of CSSSISColRowData and other 
information will be apparent from inspection of sisnapi. h, which defines the 
structure of messages that flow back and forth between the client and the SISM 
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server. The protocal is structured as request/reply (remote procedure call). The 
client may implement a non-blocking model to avoid "locking up" while waiting for 
the reply, but a simple client implementation could treat these as regular procedure 
calls, not requiring a major change in architecture. 
5 The messages have a simple format common format made up of a constant 

header and an optional list of attributes. The attributes are message specific and list 
the elements of the! message which are required. . 

At the lowest level, all data are represented as eilSeflntegers or strings. All 
10 integer data are,. in "network byte order" to avoid interpretation problems on 
heterogeneous architectures. All string data are an array of bytes (which may include 
the NUL byte), although usually these will be true C strings which are NUL 
terminated. Strings are always byte-oriented since the data is not byte swapped for 
transmission. 

15 

The length of the header and the length of the body are both explicitly given. 
This allows for advances iii the protocol to be made without breaking older 
implementations (unless desired) as long as new fields are appended to the existing 
messages. - 

20 , /;,'.• ; \ , . , • : 

The request, and associated replies contain the header plus additional 
information. All negative acknowlegement (NAK) messages have the same format: 
a generic error code (defined in sisnapi . h) and optional ctetaii information. 

25 When the message is actually transmitted x the entire message (both the header 

and body) are compressed and encrypted (except for the HELLQ request and NAK 
messages and the NO ACCEPT notify message). Because of this, the length of the 
entire message (after compression and encryption) are sent as a SISUInt32 (in the 
clear) immediately before the message data and are not included in the header length. 

30 

• * ■ ■ > * ■ * .' ' * ■ ■ • ;> . 

In order to make it easier for the client and server to construct and parse the 

messages sent back and forth, a set of classes are given to pack and unpack the 
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messages and perform the compression and encryption as necessary. The abstract 
superclass of these is CSSSISMessage, which has four sub-classes (one for each 
message type). Following is the sisnapi.h file, showing the details of the 
CSSSISMessage and other structures. 



// FILE: . sisnapi.h 

// DESCRIPTION 

// 

^ // Public header file for the Siebel internet Session message API . 

#ifndef SISNAPI_h 

#define SISNAPI H 



15 



30 



class CSSSISColRowData; 
enum SISMessageType 

SIS_M3G_UNKNOWN = o, 



SIS MSG REQUEST =1 // ^ 

on ~ " ' { /f cli ent request message 

20 SI S _MSG_AC K = 2 , // server success 

SIS_MSG_NAK = 3, // server failure message 

SIS MSG NOTIFY _ a 1 1 

- - 1XKY a 4 // server status message 

J i 

25 enum SiSRequestCode ; 

class SS_EXPORT_CLASS CSSSISMessage 

public: ' ■ ' : 

SISMessageType GetType () const { return m_type; } 

// 

/ / Methods for constructing a message . 
35 be " Fir8tly ' ^ ^ SSa9e tyPe " 9iV6n ' WhiCh all ° WS the header ^ 

cont^nts" 118 '""^* Th6n ' " add6d aCC ° rdin9 t0 the 

// of the message. 

// 

40 protected: 

B00L Add_int (unsigned int value); 



BOOL 



Add_str (const char* pStr) ; 
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BOOL Jidd_str (const char* pBuf , 

int nLen) ; 

BOOL Add_crd (CSSSISColRowbata* pCRD) ; 

5 

public: 

virtual BOOL Encode (SISMessageType) ; 

10 BOOL Complete () ; 

unsigned char* GetData () { return mjpDataBuf; } 

int GetLength. () const { return (m_pDataPtr - 

mjpDataBuf) ; } 

15 

The sisnapi.h file also defines methods for unpacking a message. The 
message data is given, from which the message contents will be extracted. The 
Copy Data method makes a copy of the given buffer while TakeData just keeps a 
20 pointer to the passed buffer and will free it when the message is deleted. 



25 



public: 
BOOL 

BOOL 

void 



CopyData (unsigned char* ppata, 
int nLen) ; 

TakeData (unsigned . char* pData, 
int nLen) ; 

DropData () ; 



30 



virtual BOOL 



Decode () ; 



35 



public: 



virtual 



CSSSISMessage 0 ; 
-CSSSISMessage () ;. 



void 



Release () ; 



40 protected: 

BOOL Get_int (unsigned int* pBuf ) ; 
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Get_str (char** 
int* 



ppData, 
pLen) ; 



Getjard (CSSSISColRowData** ppCRD) ; 



10 



15 



private : ' 
, SISMessageType 
unsigned char* 
unsigned char* 

, int ; ; 
int 

unsigned char* 



BOOL 



}; 



type; 
m_pDataBuf ; 
m_pDataPtr; 

m_nBu£ Sizs; . .. : 

nwiHeaderLen; 

mjpBodyLen; 

Extend (int nNeedBytes = -1) ; 
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Further provided are functions to connect to the SISM server (or any TCP/IP 
server). These functions do not transmit or receive any data. They simply constmct 
and tear down the TCP/IP connection. SISConnectServer returns a socket identifier 
which is passed to SISSendMessage and SISReadMessage to actually transmit and 
receive message data. Only a single server session created by SISConnectServer may 
be outstanding , at any one time. This is because there is only a single buffer used by 
SISReadMessage for collecting the input as it arrives on the socket. 



30 



. r . The function SISIsConnBroken may be called to return the status of the 
connection. If it returns t TRlIB, no more messages can be read or sent over this 
connection, and a new connection must be established (or the client should terminate). 



35 



// 

extern int SS_EXPORT_API SISConnectServer (const char* pHostName, 

. int nlnetPort) ; 

extern void SS_EXPORT_API SISDisconnect (int nSocketid) ; 



extern BOOL SSJEXPORT_API SISIsConnBroken (int nSocketid) ; 
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Security is also provided for SISMGR in the sisnapi.h file. The client 
transmits its public key using SISCryptGetPublicKeyO in the HELLO message, in the 
clear. The server generates a session key and exports it, encrypted with the client's 
public key using SISCryptGenSessionKeyO, and sends it back in the HELLO ACK, 

5 also in the clear. The HELLO and the HELLO ACK are the only messages in the 
clear. All other messages are encrypted with SISCryptEncryptO and decrypted with 
SISCryptDecryptO, using the session key. SISCryptlnitializeO is called by the client 
before the HELLO message and by the server before the HELLO ACK to initialize 
the cryptography session. If required, a key container is created and a public key 

10 generated. 

SISCryptGetPublicKeyO is called by the client to get the public key prior to 
encoding the HELLO message. 

15 SISCryptlmportKeyO is called by the client to import the session key on the 

HELLO ACK and by the servier to import the client* ss public key in the HELLO 



message. 



20 



SISCryptValidatePublicKey 0 is called by the server on receipt of the HELLO 
message to validate and import the client's public key. 



SISCryptGenSessionKeyO is called by the server prior to sending the HELLO 
ACK to generate a session key, encrypted by the client's public 5 key. 



25 



SISCryptEncryptO and SISCryptDecryptO work with the CompressBuf 



structure. 



// 
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typedef unsigned long SISCryptProvider ; 
typedef unsigned long SISCryptKey; 



// HCRYPTPROV 
// HCRYPTKEY 



extern BOOL SS_EXPORT_API SISCryptlnitialize ( . 

SISCryptProvider* phProv) ; 



out 



WO 98/38762 FCT/IJS98/02756 

extern BOOL SS_EXPORT_API SISCryptGetPublicKoy ( 

SlSCrypt- provider hProv, // 

in 

SISCryptKey* phPublicKey, // 

5 out 

. . , unsigned char** ppszPublicKeyBlob, // 

out 

DWORD* pdwPublicKeyLength) ; // 



10 



15 



20 



25 



out 

extern BOOL SS_EXPORT_API S I SCrypt Import Key ( 

''SISCryptProvider hProv, * // 

in 

SISCryptKey* phKey, // 

out 

■■unBignad char* pszKeyBlob, // 

in 

DW0R D dwKeyLength) ; // 

in ..: 

extern BOOL SS_EXPORT_API SISCryptValidatePublicKey ( 

SISCryptProvider hProv, // 

in 

SISCryptKey* ' phPublicKey, // 

out 

unsigned char* pszPublicKeyBlob, // 

in 

DWORD dwPublicKeyLength) ; // 

in 

extern BOOL ,SS_EXPORT_AFI SISCryptGenSesBi onKey ( 

SISCryptProvider hProv, // 

in *■ ■ m • 

SISCryptKey hPublicKey, // 

in 

SISCryptKey* phSessionKey, // 

OUt :': . :i t 

.unsigned char** ppssSeeaionKeyBlob, // 

out 

DWORD* ' pdwSessionKeyLength) ;// 

oct . 

extern void SS_EXPORT_API SISCryptDestroyKey ( 

SISCryptKey* hKey) ; // 

45 in/out 
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extern void SS_EXPORT_API SISCryptRelease ( 

SISCryptProvider hProv ) ; // 

in 

5 

When a message conies in on a socket (bytes are ready to read), the function 
SISReadMessage is called. This function will block until the entire message has been 
read or until the connection is closed. The sub-class of CSSSISMessage appropriate 
to the received message is returned. The session key to be used to decrypt the 
10 message is passedin. If a message is in the clear, this is 0 (HELLO, HELLO ACK). 
If more bytes are read on the socket than are needed to complete the message, they 
will be saved in a buffer private to SISReadMessage. Because of this, this function 
is not thread safe and cannot be used by the SISMGR itself. 

15 SISDecodeMessage takes the buffer given (which is already assumed to be a 

complete message) and decodes it as an actual message. This is the form used by the 
SISMGR. SISReadMessage reads the necessary data, then calls SISDecodeMessage 
to build the message structure. The buffer is kept by the message which is 
constructed and will be freed when the message is deleted. The caller must not 

20 modify or free the passed data because it is used as the actual message buffer. The 
session key to be used for decryption is passed in. 

SISCheckMessages returns the number of messages which can be gotten using 
SISReadMessage without blocking. SISCheckMessages may actually read data, but 
25 will not block. If the connection is broken, SISCheckMessages returns -1. 

When a message is to be sent, the appropriate concrete sub-class of 
CSSSISMessage is created and the data is encoded, using the virtual Encode method. 
Then the message is written onto the socket in one piece. As soon as this function 
30 returns, the message can be deleted. The session key to be used for message 
encryption is passed in. If this is 0, the message is sent in the clear. This happens 
only in HELLO and HELLO ACK msgs and also the server's No AcceptQ response. 
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// 

extern BOOL SS_EXPORT_API SISReadMessage (int nSocketld, 

C5SSISMessage*& pReturn, 
SISCryptKey hSessionKey) ; 

extern BOOL SS_EXPORTJU>I SISDecodeMassage (unsigned char* pBuf, 

int nLen, 

CSSSISMessage*& pReturn, 

, 0 „ , SISCryptKey 

hSessionKey) ; 

extern int SS_EXPORT_API SISCheckMessages (int aSocketld) ; 

// 

// . , . 

extern BOOL SS_EXPORTAPI SISSandMessage (int nSocketld, 

CSSSXSftessage* pMsg, 
SISCryptKey hSessionKey) ; 

Each request has a unique code (SIS_REQ_*) which identifies the request 
(operation) from the client. Success and failure (ACK and NAK) reply messages will 
be returned for each, request message. A simple success message might contain no 
special information, but a more complex one would contain results of the operation. 
The format of all NAK messages is the same. When a request is constructed, the 
next "request sequence number* is assigned to it for sequence verification. This is 
done automatically when the request is created. The request ID is used to connect 
the ACK or NAK reply to its original request. This mechanism provides for allowing 
asynchronous requests. 
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// 

typodef unsigned ;?.qng~ 
typedef unsigned long 

enum SISRequestCode 



{ 



S I S_REQ_HELLO 



SI'S_R£Q_LOGON 
corporate DB 

SIS_REQ_LOGOFF 

S I S_REQ_AIiLOC3TMTT 
DML or query 

SI3_REQ_EXEC - 
results 

SIS_REQ_QUERY 
rows 

S I S_REQ_PETCH 

SIS_REQ_FREESTMT 
S 1 3_REQ_ALU>CSTMr 

, SIS_REQ_COMI£ET 
S IS_REQ_ROLLBACK 



SISSequence; 



101 , // establish connection with server 

102, // attempt to log the user in to the 

103, // close DB connection for current user 

201, // allocate a statement for executing 

202, * // execute a DML statement- -no query 

203, // execute a query and return first 

204, // fetch more results on the statement 

205, // free a statement opened by 

206, // commit operations on a session 

207, // rollback operations on a session 
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208, // return information about a file on 

209, // open a file on the file server 

210, // read a chunk of data from the given 

211, // write a chunk of data to the given 

212, // close a file opened with OPENFILE 

CSSSISRequestMsg : public CSSSISMessage // 

GetRequest 0 const { return m_requeet; } 
- GetSessionld (J const { return m_sessionId; } 
GetSequence () const { return resequence; } 

Encode (SISRequestCode, 
SISSessionId, 
SISSequence&) ; 

Decode () ; 

CSSSISRequestMsg 0 ; 
-CSSSISRequestMsg () ; 

m_request; 
m_sessionId; 
m_sequence; 

44 Positive acknowlegement" messages may contain additional information 
specific to the message to which they reply to. A generic ACK merely indicates that 
the request was processed sucessfully. Most of the actual ACKs add information to 
40 the basic ACK stmcture. Thus, the CSSSISACKMsg class is subclassed in parallel 
to the CSSISSRequestMsg class. Currently these are one-to-one. 

; r t..v - . . 

All "negative acknowlegement" messages ^re the same format for simplicitly. 
A NAK code is returned plus optionally some detail as a text message for the user. 
45 The NAK code allows the client to perform recovery as appropriate and the detail 
message may , be displayed to the user if desire<d (probably* most interesting for 
debugging). A singje NAK message has an array of error indications within it. This 
represents the heirarchy of errors which are recognized by the 
software from" general to specific. Often, there will only be a single error, but 
50 typically there will be errors from different levels. When constructing a NAK 
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SIS_REQ_FILEINFO 

the server 

S I S_REQ_F ILEOPEN 
S I S_REQ_F I LEREAD 

file 

S I S_REQ_F ILE WRITE 
file 

SIS REQ FILECLOSE 



class SS_EXPORT_CIASS 

ABSTRACT 

{ 

public: 
15 SISRequestCode 
SISSessionId 
■ SISSequence 



virtual BOOL 

virtual BOOL 
virtual 



private : 
30 S IS Re que s tCode 

SISSessionId 
SISSequence 

}; 

35 // 
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message, the error information passed in is copied into the NAK struct and deleted 
when the NAK message i s delete d. When unpacking a NAK message, the 
CSSSISErrorlnfo stmcts should he read, but not modified or pointers kept because 
they will be deleted with the containing message. 
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15 



20 



// 

class SS^EXPORT CLASS CSSSISACKMsg 
ABSTRACT 

{' 

public: 

SISSequence 
SISRequestCode 

virtual BOOL 
virtual BOOL 
virtual 



public CSSSISMessage // 



Get-Re.guestld () const { return m_request Id; } 
GetRequestType () const { return m_reqType; } 

Encode (SISSequence requestld, 
SISRequestCode recfType) ; 

Decode {) ; 

CSSSISACKMsg {} ; 
-CSSSISACKMsg () ; 



±3 



private : 

SISSequence 
SISRequestCode 

}; 



m_ request Id ; 
m_reqType ; 



30 //. 

enum SISErrorType - 

S IS_NAK_I WTERNAL 
SIS_NAK_SISM 
35 SIS_NAK_DBNATIVE 
SIS_NAK_DBGENERIC 

}; 

40 enum SISErrorCode 
{ 

S I S_ERR_PARAMS 
S I S_ERR_VERS I ON 
SIS_ERR_KEY 

45 SIS_ERR_AUTH 

SIS J3RR_CONNECT . 
SIS_ERR_LIMIT 
S IS_ERR_REQUEST 
SIS_ERR_STMTXD 

50 SIS_ERR_ACCESS 
SIS ERJR_FILESYS 
SIS_ERR_FILEID 
SIS_ERR_FIIiECAT 
SiS_ERR_CRYPTINIT 

55 SIS ERR SESSKEY 



0, 
1, 
2, 
3 



100, 
101, 
102, 
103. 
104. 
105, 
106, 
107, 
108, 
109 ( 
110, 
111, 
112, 
113 



// SISM errors (one of SIS_EFR_* below) 

/ / database vendor specific error 

// database vion-vendor specific error 

// (one of SIS_DBGEN_ERR * below) 



// generic error in message params 

// protocol version not supported 

// invalid client public key 

// invalid authentication info. 

// invalid connect string <DB instance) 

// resource allocation not allowed 

// unexpected request type 

// invalid statement ID given 

// access to system resource denied 

// *irror operdng/reading/writing file 

// invalid file ID given 

// inva?.?.d file category used 

// error initializing Crypto API 

// error generating session key 



enum SISDbGenErrorCode 

60 { 

SIS_DBGEN_ERR_WRITECONFLICT 



101, 
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SIS_DBGEN_ERR_DUPCOHFLI.CT = 102, 
SIS DB6EN ERR INVALLOGON = 103 

.. .};""" 
5 

class SS EXPORT CLASS CSSSlSErrorlnfo 

{ ... . 

public: ■ . • ' 

SISErrorType m_errType; 

10 unsigned int m_errCode; 

char* m jpMe s sage ; 

BOOL SetErrbrlnfo (SISErrorType type, 

unsigned int code, 
15 const char* pMessage) ; 

CopyErrorlnfo (const CSSSlSErrorlnfo* pCopy) ; 

void Release () ; 

20 " : 

CSSSlSErrorlnfo () ; 
-CSSSlSErrorlnfo () ; 

}; 

25 class SS_EXPORT_CLASS CSSSISNAKMsg : public CSSSISMessage // FINAL 
public: 

SISSequence GetRequestld () const { return m_requestld; } 

30 int GetErrorCount () const { return m_nErrInf os ; 

CSSSlSErrorlnfo* GetErrorlnfo (int nlndex) ; 

virtual BOOL Encode (SISSequence request, 

35 CSSSlSErrorlnfo** ppErrs, 

int nErr) ; 
virtual BOOL Encode (SISSequence, 

SISErrorType type, 

unsigned int code, 

40 const char* pMessage) ; 

virtual BOOL > Decode {) ; 

static BOOL NewNAK (CSSSISNAKMsg*& pReturn) ; 

CSSSISNAKMsg () ; ■ 
virtual -CSSSISNAKMsg {) ; 



45 



50 • private: c ' ■ ' ■ * , v - 

; SISSequence m_requestld; r. ' 

CSSSlSErrorlnfo** m_ppErrInf os ; '* 

int : m_nErrInf os ; 

55 \ }; - • r ' ' : " \~ / 

In addition to the RPC protocol initiated by the;qlient, the server can send 
messages to the client (SIS_NTY_*). These messages are not acknowleged by the 
client, and the server does not wait for a response. : The client can choose to 
60 handle or not handle these notifications (for example, notify the user). 
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The HELLO message contains information from the client which allows the 
server to begin communicating with it. The major piece of client information is 
the public key the client is using. The server will encrypt the service reply 
message with the client's public key. The hello request message is sent clear. 
The hello reply messages are sent encrypted with the client's public key. All 
other messages are encrypted with the session key sent by the server in the 
HELLO ACK message. The HELLO ACK contains a session identifier allocated 
by the server (which must be seni with every succeeding message), and a session 
private key randomly generated by the server with which to encrypt all succeeding 
messages. 



// 

enum SISNotifyCode 

15 SIS_ NTY_NGACCEPT 

connection"" 

S I S JOTY_SHUTDOWN 
SIS_NTY_TIMEOUT 
S I S_NTY J? ROTOCOL 

20 SIS NTY SESSION 



30 



35 



» 101, // server does not accept client 

= 102, // server is shutting down 

a 103, // client has been idle too long 

= 104; // invalid use of protocol 

« 105 // client session state failure 



25 { 



Class SS_EXPORT CLASS 
FINAL 



public: 

SISNotifyCode 
const char* 

virtual BOOL 



virtual BOOL 



virtual 



CSSSISNotifyMsg : public CSSSISMessage // 



GetNotify () const ( return m_notify; } 
GetDetail () const { return mjpDetail; } 

Encode (SISNotifyCode , 

const char* pDetail) ; 

Decode {) ; 

*' ? 

CSSSISNotifyMsg () ; 
-CSSSISNotifyMsg {) ; 



40 



45 



50 



m_notify; 
mjpDetail ; 



private : 

SISNotifyCode 
char* 

}; 

// 
// 

#define SIS_PROTO_VERSION 0x00010001 
class SS_EXPORT_CLASS CSSSISHelloReqMsg 



public: 

unsigned long 

' unsigned char* 
DWORD 



public CSSSISRequestMsg 



GetProtoVersion 0 const { return mjprotoVer; 



GetKeyData 
GetKeyLength 



() I return m_pKey; } 

0 const { return m_nKeyLen; 
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virtual BOOL 



virtual BOOL 



Encode (SISSequence& sequence, 
unsigned char* pKey, 
int nKeyLen) ; 

Decode !) ; ' 

CSSSISHelloReqMsg () ; 
-CSSSISHelloReqMsg () ; 



15 



20 



25 



30 



35 



40 



45 



50 



private: 

unsigned long 
unsigned char* 
DWORD 

}; 



mjpirotoVer ; 

mjpKey; 

m_nKeyLen; 



class SS_EXP0RT_CLASS CSSSISHelloACKMsg 



public CSSSISACKMsg 



public: 

SISSessionId 
unsigned char* 
DWORD 

virtual BOOL 



virtual BOOL 



GetSessionld () const 
GetKeyData 0 
GetKeyLength () const 



return m_sessionId; } 
return m_pKey; } 
return nwiKeyLen; } 



Encode (SISSequence sequence, 
- SISSessionId sessionld, 
unsigned char* pKey, 
int nKeyLen) ; 

Decode 4 U ; . : 

CSSSISHelloACKMsg () ; 
-CSSSISHelloACKMsg () ( - 



m_sessionId; 

m_pKey; 

m^nKeyLen; 



55 



private : 

SISSessionId 
unsigned char* 
DWORD 

}; 
// 



The login message takes enough information to allow the user to log into 
the system: Generally, the login message is the second message sent (after 
HELLO). This message and all later messages are sent encrypted with the session 
key sent by the server in the HELLO ACK message. 

The logoff message just specifies that the connection to the database is to 
be closed. This does not shut down the connection, but it does free all resources 
associated with that ldg;in. The commit parameter indicates whether the open 
transaction on the login should be committed or rolled back. If bCommit is 
TRUE, then the transaction will be committed. Otherwise, it will be rolled back. 
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class SS_EXPORT_CLASS CSSSIS.LogonReqMsg : public CSSSISRequestMsg 



{ 

public: 

const char* 
, const char* 
const char* 

virtual BOOL 



virtual BOCL 



private.: 
char* 
char* 
char* 

}; 



Getlnstance () const { return inj>Instance ; 
GetUserName {) const ' return xn_pUserName; 
GetPassword () const { return m_j)Password; 

Encode' (SISSessionId sessionld, 
. SISSequencefi. sequence, 
const char* plnstance, 
. const char* pUserName, 
fcbiist; char* pPassword) ; 

Dacode () ; 

CSSSISLogonReqMsg () ; 
-CSSSISLogonReqMsg ().; 



rnjpinstance ; 
mjpUsei.NcJiie ; 
mjpPassword; 



class SSjm>0.*T_CLASS CSSSISLogcnACKMng : public CSSSISACKMsg 



{ 

public : 

virtual BOOL 

virtual BOOL 



}; 



Encode (SISSeguence) ; 
Decode () ; 

CSSSISLogonACKMsg () ; 
-CSSSISLogonACKMsg () ; 
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// 



class SS_EXPORT_CLASS CSSSISLogof f ReqMsg : public CSSSISRequestMsg 



public: 
BOOL 



virtual BOOL 



virtual BOOL 



private : 
BOOL 

}; 



GetCommit {) const { return m_bCommit; } 

Encode (SISSessionId sessionld, 
SISSequence& sequence, 
BOOL bCommit) ; 

Decode () ; 

CSSSISLogof f ReqMsg () ; 
-CSSSISLogof f ReqMsg () ; 



mJbCorranit ; 



class SS J2XP0RT.CLASS CSSSISLogof fACKMsg : public CSSSISACKMsg 



public: 

virtual BOOL 



Encode (SISSequence) ; 
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virtual BOOL Decode () ; 

CSSSISLogoffACKMsg 0 ; 
: - - -CSSSISLogoffACKMsg () ; 

5 } ; 

The SQL execution messages are intended to bundle communications into 
as few round-trips as possible. Typically, only one round trip is required for each 

10 user action. To accomplish this, several logical actions are performed by each 
request/ reply. The major data structure exchanged over the protocol contains an 
array of values oriented into columns and rows (internally, the data is column 
major). Each column has a defined width and is guaranteed to be NUL 
terminated. All data are represented for transmission as strings. The data are 

15 encapsulated into the CSSSISColRowData which is used both to specify input bind 
variable values (in requests) and to return output bind variables (in ACKs). 

To construct an instance of CSSSISColRowData, the structure is created by 
calling the function new. Then DefineCol is called for each column in the result 

20 set. The width must be specified at creation because the entire data block is 

allocated in one piece. Once all columns have been defined, Allocate is called to 
create the space and set up the pointers into the data block. The messages which 
take pointers to CSSSISColRowData blocks hang onto the pointers until deleted, 
but do not delete the passed-in blocks. Therefore, the blocks must be kept valid 

25 until the message which uses them is deleted, and the blocks must be separately 
deleted afterwards. 



30 



40 



// 

struct _SISColInfo; 

class SS EXPORT CLASS CSSSISColRowData 
{ 



public: ^ u ~ 

BOOL AddCol (int nWidth, 

35 const char* pName = NOLL) ; 

BOOL Allocate (int nRowCount) ; 



int GetNumCols () const ( return m_nCols 

int GetNumRows 0 const { return m nRows 



int GetColWidth (int nColIndex) const; 

const char* GetColName (int TiColIndex) const; 

int .r^- GetColIndex (const char* pName) const; 



45 BOOL GetColData (int nColIndex, 
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char* 
int 

BOOL 

short* 

char* 

short 

void 
BOOL 

BOOL 

BOOL 
BOOL 



BOOL 
const ; 

BOOL 
const ; 

void 



GetColDataPtr 
Get.ColData.Sizc 

GetColIndDa.ta 



char* pBuf) const; 
(int nCol Index) ; 
(int . nColIndex) const; 



private: 

_SISColIn£o* 

int 

int 

int 

char* 

short* 

}; 



// 



(int nCol Index, 
short* plndBuf) const; 
GetColIndDataPtr (int nColIndex) ; 

GetColRowData (int nColIndex, 

int nRowIndex) ; 
GetColRowInd (int nColIndex, 

int nRowIndex) const; 

Reset (void) ; 

SetColData (int _ nColIndex, 

const cjia]r*^ ^pBuf , 
int numRows) ; 

SetColIndData (int nColIndex, 
ccost short* plndBuf , 
int numRows) ; 

SetColRowData (int nCol, 
int nRow, 

const char* pData) ; 

SetColRowInd (int nCol, 
int nRow, 
Khort indicator); 

IsSameShape (const CSSSISColRowData* pAs) 

HasSameData (const CSSSISColRowData* pAs) 

Release {) ; 

CSSSISColRowData () ; 
-CSSSISColRowData <) ,- 



^lJpCols; 
InJlCols; 
m_nColSize; 
m_nRows ; 
m_pDataBuf ; 
m_p!ndBuf ; 
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Before a statement can he executed (either DML or query), a "statement" 
must be opened. This may or may not correspond to an actual database cursor, 
but is used to specify the execution context for the statement (encapsulating 
whatever database, state is.necessaiy). For example, in an ODBC implementation, 
this corresponds to an HSTMT. The statement allocated this way must be closed 
with a FREESTMT request, otherwise the resources will be held open. The 
statement may be re-used for subsequent statements by sending an EXEC or a 
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QUERY message using the same statement. The EXEC request is used for a SQL 
statement which will not produce output columns (or where the client doesn't care) 
and requires only a single round trip. The given statement can be immediately 
reused for another statement as dfcsired. Input bind variables can still be used with 
5 EXEC. In fact, a DML statement executed with EXEC can be executed multiple 
times by specifying multiple rows of data in the CSSSISColRowData block used 
for the input binds. All executions are done at the same time with a single round 
trip. 

10 If the Commit flag is specified as TRUE, a commit operation will be done 

after the statement is executed. This helps reduce traffic by avoiding a separate 
COMMIT request after a single DML statement. If multiple DML statements are 
to be executed as a transaction, Commit should be specified only on the last one, 
or a separate COMMIT request should be made. 

15 



// 

typedef unsigned long SISStmtId; 
20 class SS_EXPORT_c£ASS CSSSISAllocStmtReqMsg : public CSSSISRequestMsg 
public: 

virtual BOOL Encode (SISSessionId sessionld, 

. SISSequence& sequence) ; 



25 



30 }; 



45 



virtual BOOL Decode {) ; 



CSSSISAllocStmtReqMsg ().; 
-CSSSISAllocStmtReqMsg ( )'.."; 



class SS_EXPORT_CLASS CSSSISAllocStmtACKMsg : public CSSSISACKMsg 
public: 

35 SISStmtId GetStmtId () const { return m_stmtld; } 

Virtual-' BOOL - Encode (SISSeqiiebce sequence, 

SISStmtId stmt) ; 

40 virtual BOOL Decode () ; 



CSSSISAllocStmtACKMsg () ; 
-CSSSISAllocStmtACKMsg ()-; 



private : 

SISStmtId • : m stmt Id; 

}; 
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class SS.EXPORT.CLASS CSSSISExecReqMsg : public. CSSSISReouestMsg 



public: 

SISStmtId 

const char* 
" CSSSISColRowData* 

BOOL 

virtual BOOL 



XSS£ IC ?r () COne V { retu "i m stmtld; } 
GetStmt () const { return m pStmt- \ 
GetlnputBinds () ( ratum mjiBinds } 
GetCommxt () const { return m bCommit; } 



virtual BOOL 



Encode (SISSessionId 
SI3Sequence& ~ 
SISStmtId 
. conet char* 

CSSSISColRowData* 
BOOL 

Decode () ; 

CSSSISExecReqMsg () ; 
-CSSSISExecReqMsg () ; 



sessionld, 

sequence, 

stmt, 

pStait, 

pIBinds, 

bCcznwit) ; 



private: 

SISStmtId m stmtld; 

char* nTpStmt- 

CSSSISCoiRowData* irfpIBinds ; 

^ BOOL m^bCommit; 



class SS.EXPOKT.CIASS CS^ISExecACKMsg : public CSSSISACKMsg 



public: 
int 



virtual BOOL 
virtual BOOL 



private : 
int 

}; 

// - 



GetRowsAffected () const { return m_nRows; } 

Encode (SISSequence sequence, 

int nRowsAf f ected) ; 

Decode () ; 

CSSSISExecACKMsg () ; 
-CSSSISExecACKMsg () ; 



m_nRows ; 



The QUERY and. FETCH requests are used when data is to be returned to 
the client (from a SELECT statement). Input binding, statement preparation, 
execution, and initial result fetching are all done by the query request. More data 
can be coUected with the FETCH request. The QUERY request specifies the SQL 
statement, the input binding values as a CSSSISColRowData block, and the 
number of rows desired to be fetched immediately. The input binds may only 
specify a single row of values since the query will be executed only once per 
request. The reply will return no more than the number of rows specified. This 
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can be zero, in which case the query is executed, but no rows are fetched until a 
FETCH request is sent. 



10 



The QUERY request also defines the shape of the data to be retrieved. A 
second CSSSISColRowData block should be specified which has the columns 
defined, but no actual row values (Allocate never called). This is used by SISM 
in binding output values for retrieving results from the query. The output values 
in the QUERY and FETCH ACK messages will have the same shape as the block 
specified in the QUERY request. If the ACK returns all the rows available, the 
EOF member will be set to true. Further FETCH requests are unnecessary. 



15 



The FETCH request specifies a statement started by the QUERY request on 
which additional rows will be returned. As with QUERY, the reply will return no 
more than the number of rows specified as the maximum in the QUERY request. 
If the ACK returns all the rows available, the EOF member will be set to true. 
There is no need to make further FETCH requests. 



// 



20 { 



25 



30 



35 



40 



45, 



class SS_EXPORT_CLASS CSSSISQueryReqMsg : public CSSSISRequestMsg 



public: 

SISStmtId 
const char* 
CSSSISColRowData* 
CSSSISColRowData* 
int 

virtual BOOL 



virtual BOOL 



private : 

.SISStmtId 
char* 

CSSSISColRowData* 
CSSSISColRowData* 

. int . 

}; 



GetStmtld () const { return m_stmtld; } 



^ Ge t S tmt ; ( ) const 
GetlnputBinds ( ) 
GetOutputDesc () 



return m_pStmt; } 
return mjpIBinds; } 
return m_pODesc; } 



GetMaxFetch () const { return ntjiMaxFetch; } 

Encode (SISSessionId sessionld, 
SISSequence& sequence , 

SISStmtId stmt, 
const char* pStmt, 
: , CSSSISpolRowData* pIBinds, 
CSSSISColRowData* pODesc, 
int . ; nMaxFetch) ; 

Decode () ; ^ . 

CSSSISQueryReqMsg () ; 
- -CSSSISQueryReqMsg () ; ' 



m_sttntld; 
mjpStmt ; 
mjpIBinds); 
m_j>ODesc; 
m_nMaxFe t ch ; 
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15 



class SS_EXPORT_CLASS CSSSISQueryACKMsg : public CSSSISACKMsg 



{ 

public: 

CSSSISColRowData' 

int 

BOOL 

virtual BOOL 



virtual BOOL 



GetFetchVals () { return m_pFetch; } 
GetActualRows () const { return m nActual; ) 
GetEOF () const { return mjDEOF; J 

Encode (SISSequence sequence, 
v CSSSISCoIRowData* pFefcch, 
int - nActual, 
BOOL b20F) ; 

Decode () ; ; 

£SSS::&3aeryACKMsg. () ; 
-CSSSISQueryACKMsg () ; 



20 



25 



30 



35 



40 



private : 

CSSSISColRowData- 

int 

SOOL 

)*> 

II 
II 



m _pFetch; 
m_nActual ; 

in bBOF; 



class SS_roOOT_CIASS CSSS IS FetchReqMsg : public CSSSISRequestMsg 



{ 

public: 

SISStmtId 

virtual BOOL 



virtual BOOL 



GetStmtld () const { return m_stmtld; } 

Encode (SISSessionId sessionld, 
SISSequence& sequence, 
SISStmtId stmt) ; 

Decode { ) ; 

CSSSISFetchReqMsg () ; 
-CSSSISFetchReqMsg () ; 



45 



50 



55 



60 



private : 

SISStmtId 

}; 



m_stmtld; 



class SS_EXPORT_CLASS CSSSISFetchACKMsg : public CSSSISACKMsg 



{ 

public: 

CSSSISColRowData* 

int 

BOOL 

virtual BOOL 



virtual BOOL 



GetFerehVals () { return m_pFetch; } 
GetActualRows () const { return m nActual; ) 
GetEOF () const { return m_bEOF; J 

Encode (SISSequence sequence, 
CSSSISColRowData* pFetch, 
' int . nActual, 

BOOL bEOF) ; 

Decode ( ) ; 

CSSSISFetchACKMsg () ; 
~CSSSISFetchACKMsg< () ; . 



65 



private: 

CSSSISColRowData* 
int 



m_pFetch; 
m_nActual ; 



-58- 



WO 98/38762 

BOOL 

}; 

- // 



PCT/US98/02756 



m bEOF; 



10 



The FREESTMT request closes a statement created with the ALLOCSTMT 
request. This implicitly invalidates any query which is currently active on this 
statement. The COMMIT request commits outstanding DML operations on the 
current session (login). The ROLLBACK request rolls back outstanding DML 
operations on the current session (login). 



// 

15 class SS_EXPORT_CLASS CSSSISFreeStmtReqMsg : public CSSSISRequestMsg 



20 



25 



{ 

public: 

SISStmtId 

virtual BOOL 



virtual BOOL 



GetStmtld () const { return m_stmtld; } 

Encode (SISSessionId sessionld, 
SISSequence& sequence, 
SISStmtId stmt) ; 

Decode {) ; 

CSSSISFreeStmtRecjMsg () ; 
-CSSSISFreeStmtReqMsg () ; 



30 



40 



45 



50 



55 



private : 
BOOL 

}; 



m_stmtld; 



35 { 



class SS_EXPORT_CLASS CSSSISFreeStmtACKMsg : public CSSSISACKMsg 



public: 

virtual BOOL 

virtual BOOL 



Encode (SISSequence) ; 

Decode ();'•-*' 

CSSSISFreeStmtACKMsg () ; 
•^CSSSISFreeStmtACKMsg ( ) ; 



// ■ ' --: ...... 

// • - ' ' 

class SS_EXPORT_CLASS ' CSSSISCommitReqMsg : public CSSSISRequestMsg 
public: 

virtual BOOL Encode (SISSessionId sessionld, 

SlSSequencefc sequence) ; 



virtual BOOL ^ 



}; 



Decode {) ; 

CSSSISCommitReqMsg 0 ; 
-CSSSISCommitReqMsg {) ; 
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class SS_EXPORT_CLASS CSSSISCommitACKMsg : public CSSSISACKMsg 

public: 

5 virtual BOOL Encode (SISSequence) ; 

virtual BOOL Decode () ; 

CSSSISCommitACKMsg {) ; . 
J0 j. CSSSISCommitACKMsg. '() ; 

. // ... 
7/ ' 
J5 class SS_EXPORT_CLASS CSSSISRollbackReqMsg , public CSSSISRequestMsg 

public: 

virtual BOOL Encode (SISSessionId sessionld, 

SISSequence » sequence) ; 
20 virtual BOOL Decode {) ; 



25 



CSSSISRollbackReqMsg () ; 
-CSSSISRollbackReqMsg (} ; 



Class SS_EXPOP.T_CI.ASS CSSSISRollbackACKMsg : public CSSSISACKMsg 
public : 

30 victual BOOL Encode (SISSequence) ; 

virtual BOOL Decode () ; 



35 }; 

II 

40 



CSSSISRollbackACKMsg () ; 
-CSSSISRollbackACKMsg () ; 



This next group of messages support remote file access through the 
5ISMGR, which- is used to implement literature and correspondence (fulfillment) 
requests. These messages provide simple file-style access to files located on the 
machine running SISMGR or remotely accessible from it. The basic file 
45 ' operations are supported: open, read, write and close. 

Files are requested by category and name. The category can be used to 
identif y different groups of documents and to allow the files to be partitioned for 
different sets of users. The server may also enforce different access restrictions 
50 on different categories. An open file is identified by a SISFileld which is returned 
by open and which all ether file-related requests must provide. This file ID must 
be closed when the operations are complete. 
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15 



20 



25 



// 

typedef unsigned long SISFileld; 



enutn SZSFileMode 



{ 



}; 



SIS_MODE_NONE 
SIS_MODE_READ 
SIS_MODE_WRITE 
SIS MODE RDWR 



- o,. 

= (1 « 0) , 

= (1 << 1) / 

= SIS MODE READ 



SIS MODE WRITE 



class SS EXPORT_CLASS CSSSISFilelnf oReqMsg : public CSSSISRequestMsg 
{ 



public: 

const char* 
const char* 

virtual BOOL 



virtual BOOL 



GetCategory () const { 
GetFileName () const f 



return mj>Category; J 
return m_pFileName; } 



Encode (SISSessionId sessionld, 

SlSSequencefc sequence , 

const char* pCategory, 

const char* pFileName) ; 

Decode () ; 

CSSSISFilelnf oReqfMsg () ; 
-CSSSISFiielhfcReqMsg () ; 



30 



35 



40 



45 



50 



55 



60 



65 



private : 
char* 
char* 

}; 



mjpCategory; 
m_j>FileName; 



#ifndef JTIMEJTDEFINED - 
typedef long time_t; 
#endif 

typedef unsigned int size_t; 

class SS_EXPORT_CLASS CSSSISFilelnf oACKMsg : public CSSSISACKMsg 



public: 

const char* 

>size_t ■; - • 

, time_t 

time_t 

SISFileMode 

virtual BOOL 



virtual BOOL' 



GetFileName :( ) const : { return m_pFileName ; 

GetFileSize , ,..(} ,const r { return m_nFileSize ; 

QetOreateTime J) ; const ( return m_createTime ; 

GetWriteTime () const { return m_writeTime; 

GetFileModes () const { return m_modes; } 

Encode (S t ISSequence sequence, 
; const char* pFileName, 
size^t nFileSize, 
* time^t- createTime , 

time_t writeTime, t 

' ■"■ SISFileMode modes) ; 

Decode" ( ) ; 

CSSSISFilelrifoACKMsg {) ; 
-CSSSISFilelnf oACKMsg () ; 



private : 
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char* 

unsigned long 
time_t 
time_t 
SISFileMode 



m_pFileName; 
m_nFileSize; 
m_createTime; 
m_ vriteTime; 
m_modes; 



10 { 



15 



20 



25 



class SS_EXPORT_CLASS CSSSISFileOpenReqMsg : public CSSSISReguestMsg 



public : 

const char* 
const, char* 
SISFileMode 

virtual BOOL 



virtual BOOL 



GetCategory () const 
Ge t Fi 1 e Name ( ) cons t 
GetQpenMode ( ) const 



return mjpCategory; } 
return m_pFileName; } 
return m_openMode; } 



Encode (SISSessionId sessionld, 
SlSSequencefc sequence, 
const char* pCategory, 
const ch£;r* pFileName, 
SISFileMode openMode) ; 

Decode () ; 

CSSSISFileOpenReqMsg () ; 
-CSSSISFileOpenReqMsg () ; 



private : 
char* 
30 char* 

SISFileMode 

}; 



40 



m_pCa t e gory ; 
m_pFileName; 

tn_openMode ; 



35 claas SS_EXPORT_CLASS CSSSISFileOpenACKMsg : public CSSSISACKMsg 



public: 

SISFileld 
const char* 



} 



45 } 



size_t 
time_t 
time t 



GetFileld () const { return m fileld; } 
GetFileName () const { return m_pFileName ; 

GetFileSize {) const { return m_nFileSize ; 

GetCreateTime () const { return m_createTime ; 

GetWriteTime () const { return m.writeTime; 



virtual BOOL 



50 



55 



60 



65 



virtual BOOL 



private: 

SISFileld 
char* 

unsigned long 

time_t 

tiniest 



Encode (SISSequence sequence, 

j SISFileld .. file. 

const char* pFilsHame, 
size_t nFileBize, 
time_t createTime, 
time_t writeTime) ; 

Decode (} ; : • •> 

CSSSISFileQpenACKMsg () ; 
"CSSSISFileOpenACKMsg- ();-.' 



m_f ileld; 
m_oFileName; 
m_nFileSize; 
m_createTime ; 
m_writeTime; 
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class SS_EXPORT_CLAS3 CSSSISFileReadReqMsg : public CSSSISRequestMsg 

public: 

SISFileld 
size t 



} 



int 



GetFileld () const I return m_fileld; } 
GetChunkSize () const { return m_nChunkSize; 

GetMaxChunks {) const { return m_nMaxChunks ; 



virtual BOOL 



15 



20 



virtual BOOL 



Encode (SISSessionId sessionld, 
SlSSequencei sequence, 
SISFileld file, 
size_t : chunkSize, 

int njgDcQhunfcs) ; 

Decode () ; 

CSSSISFileReadRegMsg {) ; 
-CSSSISFileReadReqMsg () ; 



25 



30 



35 



40 



45 



50 



private : 

SISFileld 

size_t 

int 

}; 



m_f ileld; 
mjiChunkS i z e ; 
m_nMaxChunks ; 



class SS_EXPORT_CLASS CSSSISFileReadACKMsg public CSSSISACKMsg 



public: 

unsigned char* 

size_t 

BOOL 

virtual BOOL 



virtual BOOL 



private: > 
unsigned char* 

. size_t' .. 
BOOL 



GetChunkData ( ) 
GetChunkSize ( ) const 
GetEOF () const 



return xnjpDaf.a; } 
return nwiDataLen; } 
return m_bEOF; } 



Encode (SISSequence sequence, 
unsigned char* pData, 
..a . size_t nDataLen, 
BOOL bEOF) ; 

Decode () ; 

CSSSISFileReadACKMsg () ; 
-CSSSISFileReadACKMsg () ; 



mjpData; 
nwiDataLen; 
m bEOF ; 



55 



60 



65 



class SS_EXPORT_CLASS CSSSISFileWriteReqMsg : : public CSSSISRequestMsg 



public: . 1 

SISFileld J 
unsigned char* 
size t 



} 



GetFileld () const 

GetChunkData () 
GetChunkSize () const 



return m_f ileld; } 
return m_pData; } 
return nwiDataLen; 



virtual BOOL 



Encode (SISSessionId sessionld, 
SISSequerice&' sequence, 
SISFileld file, 
unsigned char* pData, 
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virtual BOOL 



size_t 
Decode () ; 



PCT/US98/027S6 
nDataLen) ; 



private : 

SISFileld 
unsigned char* 
size t 

}; 



CSSSISFileWriteReqMsg () ; 
-CSSSISFileWriteReqMsg () ; 



.m_f Held-; 
rrTpData; 
m_nDataLen ; 



class SS_EXPORT_CLASS CSSSISFileWriteACKMsg : public CSSSISACKMsg 



{ 

public: 

virtual BOOL 

virtual BOOL 



}; 



Encode (SlSSequenpe sequence ) ; 
Decode ()■•; , 

CSSSISFileWriteACKMsg () ; 
-CSSSISFileWritfeACIGMsg () ; 



class SS^XPORT^CLASS CSSSISFileCloseReqMsg : public CSSSISRequestMsg 



{ 

public: 

SISFileld 

virtual EOOL 



virtual BOOL 



private : 

SISFileld 

}; 



GetFileld () const { return m_fileld; }. 

Encode (SISSessionId sessionld, 
SISSequsnca& seauence, 
SISFileld file) ; 

Decode 0 ; . 

CSSSISFileCloseReqMsg () ; 
-CSSSlSFileCloseReqMsg () ; 



m_f ileld; 



class SS_EXPORT_CLASS CSSSISFileCloseACKMsg : public CSSSISACKMsg 



{ 

public: 

■ virtual fiOOIi 
virtual BOOL 



}; 
// 



Eacodss {Sl'SSequence sequence); 
Decode ( ) ; 

CSSSISPi."(?CloBeACKiyiBg : () ; 
-CSSSISFileCloseACKMsg () ; 



Following are wrapper functions for creating, aU of the different classes 
60 implemented in this library, if SISNAPI is not implemented as a DLL. 



// 



extern BOOi; SS_EXPORT_APl SlSNewMessage (SlSMessageType msgType, 
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SISRequestCode reqCode , 
CSSSISMessage*& pReturn) ; 

extern BOOL SSJEXPORT_API SISNewMeesage (SISMessageType msgType, 
5 CSSSISMessage*& pReturn); 

extern BOOL SS_EXPORT_API SISNewColRowData (CSSSISColRowData*& 
pReturn) ; 

10 extern BOOL SS_EXPORT_AFI SISNewErrorlnf o (CSSSISErrorlnf o*& 
pReturn) ; 

#endif // SISNAPI_H 

Configuration 

SISMGR creates database connections in response to client requests 
20 and actions, and does not create an initial connection to the 

corporate database. At startup, SISMGR loads its configuration 
information from the Windows NT registry. Configuration information 
is stored as values set on the Configuration key. The configuration 
parameters read at startup' are as follows: 

25 

■ • • Allow Connections From 
Allows specification of a set; of host names or network addresses from 
which connections will be accepted. Network addresses are specified 
in the usual format and allow sub-nets to be specified with 
30 wildcarding (for example: 206 . 79 . 143 . * for all addresses in the 

206 • 79 . 143 "class C" subnet). Multiple host names and network addresses are 

separated by commas. If specified as *.*.*.*, no host address validation is 

performed. 

• Internet Port Number 

35 Specifies the Internet port number at which the server will listen for client 

connections. Clients must connect to the correct machine and to this port number 
to contact SISMGR. 

• Maximum Connections 

Specifies the maximum number of connections allowed at any one time. If 
40 specified as 0, no limit is placed on the number of connections. 

• ' Maximum Idle Minutes ' 

Specifies the maximum number ''of minutes a : client can be idle (not sending any 
messages) before the connection is automatically closed by SISMGR. This can be 
used to free up resources held by a client when a salesperson leaves it running. If 
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• Connect String Map 

Specifies the mappings between "connect strings" specified by the client when 
connecting and database vendors and "instance" identifiers for instantiating a 
5 connector when the client Jogs in. The format of this value is a sequence of 
connect string "maps", separated by commas. Each map is comprised of the 
connect string as specified by the user, the database vendor this corresponds to, 
and the database instance to connect to. For example: MPengr=oracle:dev 
indicates that the user-supplied connect string "MPehgr wflt be implemented by 
10 the Oracle connector using the database .'instance "dev" (which must be known to 
the machine on which STSMGR is running). 

• Oracle Connector DLL 

Specifies the name of the DLL which implements the connector to Oracle 
databases. This will be used for connections which map to Oracle database 
15 instances. The value should be the name of the DLL which implements the SISM 
connector for Oracle. For example: sax30o72 .dll for the Oracle 7.2 
connector. 

•. Sybase Connector DLL < . . 

Specifies the name of the DLL which implements the connector to Sybase SQL 
Server databases. This will be used for connections which map to Oracle database 
instances. The value, should be the name of the DLL-wtoich implements the SISM 
connector for Sybase SQL- Server. For example: ssx30sli.dll for the Sybase 
system 1 1 connector. 

• Informix Connector DLL 

Specifies the name of the DLL which implements the connector to Informix On- 
line databases. This wffl be used for connections which map to Informix database 
instances. The value should be the name of the DLL which implements the SISM 
connector for Infcnna Oiirliiie. For example: ssx30i72 . dll for the Informix 
7.2 connector, 

30 ;» Microsoft Connector DLL 

Specifies 'the name of the DLL which implements the connector to Microsoft SQL 
Server databases. This will be used for connections which map to Microsoft 



20 



25 
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database instances. The value should be the name of the DLL which implements 
the SISM connector for Microsoft SQL Server; For example: ssx30m60 . dll for 
the Microsoft 6.0 connector. 

• Update Frequency 

5 Specifies the frequency in seconds with which SISMGR updates the statistics in the 
registry key for monitoring programs and checks the control key for shutdown 
requests. The default is 5 seconds, which allows for fine-grained monitoring. 

• Message Resource DLL 

Specifies the name of the DLL which is loaded for handling error, 
10 warning, and informational messages. Infernally, error codes are used and 

are translated into strings only when errors are reported to the user. For 
example, ssrsis30 . enu for US English. 

• File Root Directory 

Specifies the absolute path name to the directory which contains the files which are 
15 available to be served to clients using the file access messages. 

• Configuration Password 

Specifies the password which must be entered by the user when starting up the 
configuration user interface applet. This value is not read or set by SISMGR 
itself. : ' - 

20 • , . • ■ - - • 

A user interface may be provided for editing the registry values. For 
example, a Windows NT control panel applet may be used, or some other form to 
make the UI consistent with other system services. 

25 Once the system preferences have been read, SISMGR is up and begins 

accepting connections. : '•■ - ; 

: :.. • • ; CONCLUSION : 

Various modifications to these embodiments will be readily apparent to 
30 those skilled in the art, and the generic principles defined herein may be applied to 
other embodiments without the use of inventive faculty. : Thus, the present 
invention is not intended to be limited to the embodiments shown herein, but is to 
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be accorded the widest scops consistent with the principles and novel features 
disclosed herein. 

All publications and patent applications mentioned in this specification are 
herein incorporated by reference to the same extent as if each individual 
5 publication or patent appbcation was specifically and individually indicated to be 
incorporated by reference. 

Hie invention now being fully described, it will be apparent to one of 
ordinary skill in the art that many changes and modifications can be made thereto 
without departing therefrom. 
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APPENDIX 

Writing User Transaction Log File for a Given Laptop Node 

This program will be called by a server-side process that processes transaction log 
entries for all Laptop Nodes. For each Laptop Node, the calling process is building the 
5 UserTrxnLogFileName and Calling Prograrri 1. 



Input Parameters 



• . LaptopNodeld - nodejd of the destination laptop 

10 • UserTxnLogFileName - full path of the file where txns will be written 

• MaxBatchTxns - number of txns between commits and updates to the 
S_DOCK_STATUS table 

• MaxTxns - number of txns to process in this session. Use this parameter 
to limit processing. 

15 Main Algorithm 



CHECK PARAMETERS 
IF (MAXTXNS < 1 | | MAXBATCHTXNS < 1) THEN 
INVALID PARAMETER 
20 END IF 



GET LAST LOG_EXTRACT NUMBER FOR THE LAPTOP FROM S_DOCK_STATUS 
LAST_TXN_COMMIT_NUMBER = UTLDSTATGETLOGNUM (LAPTOPNODEID) ; 

25 INITIALIZE VARIABLES 

NUMTXNS = 0; TOTAL NUMBER OF TXNS PROCESSED 

NUMBATCHTXNS = 0; TOTAL NUMBER OF TXNS WRITTEN IN THE CURRENT 

BATCH 

30 READ DOCKING OBJECT AND TABLE DEFINITIONS INTO MEMORY STRUCTURES 

STARTD I CTAP I 0 ; 

OPEN THE USER LOG TXN FILE 
OPEN USER LOG TXN FILE 

35 

-- SELECT AND PROCESS - NEW— *K£NS^Tl? =a ^S_DOCK - _TRANSACTION_LOG 

WHERE TXN_COMMIT_NUMBER > LAST_TXN_COMMIT_NUMBER 
FOR EACH NEW TXN LOOP 

40 STOP PROCESSING IF REACH MAXTXNS 

IF NUMTXNS = MAXTXNS THEN 

BREAK; 
END IF; 

45 PREVENT CIRCULAR TXNS. DO NOT SEND THE TXN BACK TO THE 

ORIGINATING LAPTOP 

IF TXN . ORIGINNODEID = LAPTOPNODEID THEN 

GOTO NEXT TRANSACTION 
END IF; 

50 

PROCESS ALL OTHER TYPES OF TRANSACTIONS 
THIS IS THE VISIBILITY CALCULATOR! 

THIS ROUTINE ALSO PROCESSES IMPLICIT VISIBILITY EVENTS 
55 LATER: DATA MERGE CAN CALL THIS FUNCTION TO CHECK WHETHER A TXN 

IS 

STILL VISIBLE WHEN MERGING TXNS INTO A LAPTOP OR SERVER 
DATABASE . 
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tiSSK" 1 ™ <laptopnode ^' logrbcordtvpe, tabled, 

IF TON IS VISIBLE THEN 

5 " " "RITE TRANSACTIONS TO USERTXNLOG PILE DEPENDING ON THE 

J -- TYPE OF LOGRECORDTYPE iNU1JNj ON THE 

WRITE THE TON TO THE USER LOG FILE 

++NUMBATCHTXNS 

. . ' END. IF; • - ■' • • • 
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20 
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45 



-- FINISHED PROCESSING THE TXN 
-- COMMIT <IF NEEDED) 

IF NUMBATCHTXNS = MAXBATCHTXNS THEN 

^t^ THAT SEPARA ^ PROCESS COMES AROUND AND DELETES 

NUMBATCHTXNS s 0 ; 

END IF; : . 

++NUMTXNS . 

END LOOP ; /* EACH TRANSACTION IN THE TXN LOG TABLE */ 
COMMIT 

S1- IAST I ' 0G - EXTRACT : "Mote FOR LAPTOP IN S_DOCK_STATOS 



CLOSE LOG FILE (IP NEFDED) 
IF USERTXNLOGFILEP ? s NULL THEN 
JO CLOSE FILE; ' 

END IF; 

STOPDICTAPI () ; 
35 CHECK VISIBILITY ROUTINES 



4 0 { 



t* ?9£lZ~?? Sm '* rS fc>0TBD' BASED ON THE DESTINATION LI^T 

IF LOGRECORDTYPE IN ( ' SQLSTATEMENT ' ) THEN 

IF LAPTOP NODE IN. DESTINATION LIST THEN 

RETURN TROE ; • 
END IF; 



^S&.S'WS^ » ^ NODES 

- - SIMPLE DELETES NEED .MORE PROCESSING 
55 ,i? GREC0Rm " yPE IN < ' SIMPLE DELETE « ) , THEN 

R^TU I S A TR^y iSIBILITY 1N <'™»»«./ 'LIMITED',) THEN 
END IF;. 

m ' ' ^ MPLE Inserts and simple updates need more proce <? <3 rnr 

„ ELSIF TABLE. VISIBILITY ' LIMITED ' THEN 

» IF CHECKTXNVISIBILITY ( LAPTOPNODEID , TABLE, ROWID) THEN 
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RETURN TRUE; 
END IF; 
END IF; 
END IF; 

5 } 

CHECK IF A RECORD IN THE TXN LOG IS VISIBLE TO A LAPTOPNODEID 
STATIC BOOL CHECKTXNVISIBILITY (LAPTOPNODEID, TABLE, ROWID) 

10 BOOL BVISIBLE = FALSE; 

FIND THE TABLE IN THE. DICTIONARY; 
IF TABLE NOT FOUND THEN 
ERROR: TABLE NOT DEFINED 
15 END IF; 

FOR ALL DOCKING OBJECTS THAT THE TABLE BELONGS TO LOOP 

- - GENERATE SQL TO GET PRIMARYID VALUES OF THE DOCKING OBJECT 
GENE RATE PRIMARY IDSQL (TABLE, ROWID , DOCKINGOBJECT) ; 
20 FOR EACH PRIMARYID VALUE RETRIEVED LOOP 

CHECK03JECTVISIBILITY (LAPTOPNODEID, PRIMARYTABLE , 
PRIMARYROWID) 

IF OBJECT IS VISIBLE THEN 

BECAUSE CHECKOBJECTVISIBILITYO ALSO PROCESSES IMPLICIT 
25 VISIBILITY EVENTS, WE MUST LOOP THROUGH ALL DOCKING OBJECTS 

EVEN IF WE ALREADY KNOW THAT THE TXN IS VISIBLE . 
-- EXCEPTION: IF THE TABLE HAS VIS EVENT_FLG = 'N' 

THEN WE CAN RETURN IMMEDIATELY . 
IF TABLE. VISIBILITYEVENTFLG = 'N' THEN 
30 RETURN TRUE ; 

ELSE 
BVISIBLE = TRUE; 
END IF; 
END IF; 
35 END LOOP; 

END LOOP; ' 



40 



RETURN BVISIBLE; 



- - check if an instance of a docking object is visible to the laptop 
user. .: \; 

also processes implicit. visibility events! 
45 bool checkob jectvt s ib i lity (laptopnodeid, dockingob jectname , 
primaryrowid) 

{ 

FOR EACH VISIBILITY RULE FOR THE DOCKING. OBJECT LOOP 
IF RULETYPE = RULESQL THEN V' , '* 
50 RUN THE . SELECT SQL STATEMENT .USING PRIMARYROWID ; 

IF ANY ROWS RETURNED 1 , THEN . 
ROW TS VISIBLE 

PROCESS AN IMPLICIT DOWNLOAD OBJECT 
DOWNLOADOBJECTINSTANCE (LAPTOPNODEID, PRIMARYTABLENAME , 
55 PRIMARYROWID) ; 

. . RETURN TRUE ; T ^ ' „ * 

END IF; " 1 

ELS IF RULETYPE = CHECKDOCKINGOBJECT THEN 

RUN THE PARAMETERSQL USING PRIMARYROWID TO GET NEWPRIMARYROWID 
60 . . FOR. EACH RECORD RETRIEVED BY, PARAMETERSQL LOOP 
RECURSIVE! ; ". .! *: , : 

■ CHECKOB JECTVISIBILITY (LAPTOPNODEID,* CHECKDOCKINGOB JECTNAME , 

NEWPRIMARYROWID ), ; t 

IF RC => TRUE THEN 
65 - - PROCESS AN IMPLICIT DOWNLOAD. OBJECT 

DOWNLOADOBJECTINSTANCE ( LAPTOPNODEID , PRIMARYTABLENAME, 



-71- 



WO 98/38762 



PCT/US98/02756 



10 



RETURN TRUE;- PRIMARYROWID ) 

END IF; 
END LOOP; 
END IP; 
END LOOP; 

OBJECT IS NOT VISIBLE. : 

■- PROCESS AN IMPLICIT REMOVE OBJECT 



^ J-rwijACJI-T REMOVE OBJECT 
^ RETURN FALSE; 

GENERATE SQL .STATEMENT TO GST PRIMARYID 
_ n -- GENERATE THE SELECT SQL STATEMENT 1*- r,P'« 

20 THE DOCKING OBJECT FOR THE ^MBERTAbS P * IMARYID VALDE °* 

- - SQL STATEMENT LOOKS LIK£ - 
SELECT TP . <ROK'_ID> ; 
. FROM <TABLE_GWKER> . «:TAELE> Tl 
" <TABLE_OWNER> . <PKTABLE> T2 

<TABLE_OWNER> . <PKTABLE> TN 
30 " r nmnn <TABLE_OWNER> . < FRIMARYTABLE > TP 

■■ i^s^ m ^ 

/* JOIN FROM T2 TO TN */ 
^ T2.^ K COLUKN S . „ TN . < PKCOLUMN> 
AND' <T2 ?KCOHDITIOK> : 
n " /* JOIN TO THE PRIMARYTABLE */ 

^^^^^^^^^^ MEMBER TABLE 
: - FOR EACH 0, 'IKE PATHS ^^Olf T^g^^f^^^^ 

THIS FUNCTION ASSUMES' THU THERE ARE NO LOOPS IN THE DEFINITION 
0 3J £? SE STATEMENT °° NOT OIANGE FOR EACH TABLE IN A DOCKING 

SO WE CAN CALCULATE THEM ONE AND STORE ' THErit IN MEMORY. 



STRUCT 



CHAH* SELECTLIST; ■., 

CHAR* FROMCLAUSE; .... 

CHAR* WHERECLADSE; 
ta UINT + NUMTABLES; /* ALSO THE NUMBER OF JOINT TO REACH THE PRIMARY 
} GENSTMT; 

GENERATEPRIMARYIDSQL (TABLE. DOCKINGOBJECT) 

/* THERE MAY BE MORE THAN ONE SQL STATEMENT , SO WE HAVE A DYNAMIC 
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ARRAY OF SQL STATEMENTS. EACH ELEMENT IN THE ARRAY IS A PATH 

FROM THE TABLE TO THE PRIMARY TABLE*/ 
DYNARRID GENSTMTARR; 
GENSTMT NEWGENSTMT; 

CHAR* SQLSTMT; 

DYNARRCREATE (GENSTMTARR) 

10 -- CREATE THE FIRST ELEMENT AND INITIALIZE 

NEWGENSTMT =: MALLOC ( ) ; 
NEWGENSTMT . NUMTABLES = 1; 

NEWGENSTMT. SELECTLIST a "SELECT ROW_ID"; 
NEWGENSTMT. FROMCLAUSE = "FROM <TABLE> Tl" ;' 
15 NEWGENSTMT. WHERECLAUSE = "WHERE Tl.ROW_ID = :ROW_ID"; 

DYNARRAPPEND (GENSTMTARR, &NEWGENSTMT) ; 

/* RECURSIVELY FOLLOW FKS : TO THE PRIMARYTABLE */ 

BUILD THE SELECT, FROM AND WHERE CLAUSE SIMULTANEOUSLY */ 
20 ADD PKTABLE ( TABLE v ■ DOCKINGOB JE CT , GENSTMTARR , . 0 > ; 

- - UNION ALL THE PATHS TOGETHER 
NUMSTMTS = DYNARRSIZE ( GENSTMTARR ) ; 
FOR ALL ELEMENTS IN THE ARRAY LOOP 
25 TMPSQLSTMT = GENSTMTARR [J] . SELECTLIST | | GENSTMTARR [J] . FROMCLAUSE 

M ... GENSTMTARR [ J] .WHERECLAUSE ; 

SQLSTMT = SQLSTMT | | 'UNION' || TMPSQLSTMT; 
END LOOP; 

30 DYNARRDESTROY (GENSTMTARR) ; 



35 



IF SQLSTMT = NULL THEN 

ERROR: NO PATH FROM TABLE TO PRIMARY TABLE. 
END IF; 



RECURSIVELY, FOLLOW ALL FKS TO THE PRIMARY TABLE 
ADD PKTABLE (TABLE, DOCKINGOB JECT, GENSTMT f INPUTSTMTNUM) 

40 { 

UINT NUMFKS « 0; 
UINT STMTNUM; 
GENSTMT NEWGENSTMT ; 

45 FOR ALL FKS. FOR THE TABLE LOOP . . " ;,. 

IF* PKTABLE IS- A MEMBER TABLE OF THE DOCKING OBJECT THEN- 

IF THERE'S MORE THAN ONE FK, THEN THERE IS MORE THAN ONE PATH 
OUT OF' THE CURRENT TABLE . 
- - COPY THE SQL STMT TO A NEW DYNARRELMT TO CREATE A NEW PATH 
50 IF NUMFKS > 0 THEN , ■ 

- - CREATE A NEW ELEMENT AND COPY FROM GENSTMT t INPUTSTMTNUM] 
. NEWGENSTMT ^.MALLOC () ; . • 

NEWGENSTMT \ NUMTABLES = GENSTMT [INPUTSTMTNUM] .NUMTABLES; 
NEWGENSTMT. SELECTLIST = GENSTMT [INPUTSTMTNUM] . SELECTLIST; 
55 NEWGENSTMT . FROMCLAUSE = GENSTMT [ INPUTSTMTNUM] .FROMCLAUSE; 

NEWGENSTMT. WHERECLAUSE = GENSTMT [INPUTSTMTNUM] .WHERECLAUSE; 
DYNARRAPPEND ( GENSTMTARR , &NEWGENSTMT) ; 
STMTNUM = DYNARRSIZE (GENSTMTARR) ; ^ 

60 PUT A CHECK HERE FOR INFINITE LOOPS ' 

IF STMTNUM as 20 THEN 

ERROR: PROBABLY GOT AN INFINITE LOOP? 
END IF; 
ELSE - 
OJ STMTNUM = INPUTSTMTNUM; 

END IF; — , . 
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APPEND THE NEW PKTAELE TO THE FROMCLAUSE AND WHERE CLAUSE 
GENSTOT [STMTNUM] . FROMCLAUSE a ■ 

GENSTHfT LSlTyTTNUM] .FROMCLAUSE |j n , \N < TABLE > T<NOMTABLES + 

1>"; 

GENSTTTT [STMTNDM] .WHERECLAUSE =: 

GENSTMT [STMTNUM] . WHERECLAUSE | | 

"AND T<NUMTABLES> . <FKCOLUMN> = T<NUMTABLES + 1> . <PKCOLXJMN>" 

II 

"AND <FKCONDITION FOR TABLE IF ANY>"; 
++GENSTMT . NUWTAB1-ES ; 

PKTABLE IS THE PRIMARY TABLE THEN DONE. 
IF PKTABLE = PRJMftRYTABLE THEN 

RETURN; 
ELSE 

ADD PKTABLE {PKTABLE, DOCKINGOB JECT , GENSTMT t - STMTNUM) ; 
END IF; 

ONLY COUNT FKS TO OTHER MEMBER TABLES IN THE SAME DOCKING 

OBJECT 

++NUMFKS; , . 

END IF; 
END LOOP; 

RETURN; 

} 

PROCESS VISIBILITY EVENTS 



DOWNLOAD AN OBJECT INSTANCE TO A LAPTOP 
- . THIS FUNCTION ALSO DOWNLOADS ALL RELATED DOCKING OBJECT INSTANCES . 
BOOL DOWNLOADOB JE CTI NSTANCE ( LAPTOPNODEID , OBJECTNAME, PRIMARYROWID) 

^ CHECK IF THE OBJECT INSTANCE IS ALREADY DOWNLOADED TO THE LAPTOP 
FIND THE OBJECT INSTANCE IN THE S_DOBJ_INST TABLE 
IF EXISTS ON LAPTOP THEN 

RETURN TRUE; 
END IF; 

REGISTER OBJECT INSTANCE IN S_DOBJ_INST TABLE 

-- WRITE DOWNLOAD OBJECT RECORDS TO THE TXN LOG 

FOR EACH MEMBER TABLE OF THE DOCKING OBJECT LOOP 
GENERATE SQL SELECT STATEMENT TO DOWNLOAD RECORDS 
WRITE EACH RETRIEVED RECORD TO THE USER TXN LOG FILE 

END LOOP; 

DOWNLOAD RECORDS FOR PARENT OBJECT INSTANCES 
FOR EACH RE LATEDDOCKINGOB JE CT LOOP 

RUN PARAMETERS QL TO GET NEWPRIMARYID OF RE LATEDDOCKINGOB JECTS 
FOR EACH NEWPRIMARYID RETRIEVED LOOP 

CHECK IF THE INSTANCE OF THE OBJECT IS VISIBLE TO THE LAPTOP 

USER 

CHECKOBJECTVISIBILITY (LAPTOPNODEID, OBJECTNAME, PRIMARYROWID) 
IF VISIBLE THEN 
DOWNLOADOB JECTINSTANCE { LAPTOPNODEID , 

RELATEDDOCKINGOB JECT , 

NEWPRIMARYROWID) ; 
END IF; 
END LOOP; 
END LOOP; 

RETURN TRUE; 

} 
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REMOVE AN OBJECT INSTANCE TO A LAPTOP 

THIS FUNCTION ALSO REMOVES ALL RELATED DOCKING OBJECT INSTANCES 
BOOL REMOVEOBJECTINSTANCE (LAPTOPNODEID, ..OBJECTNAME, PRIMARYROWID) 

5 -- CHECK IF THE OBJECT INSTANCE IS ALREADY DOWNLOADED TO THE LAPTOP 

FIND THE OBJECT INSTANCE IN THE S_DOBJ INST TABLE 
IF DOES NOT EXIST ON LAPTOP. THEN 

RETURN TRUE ; 
END IF; 

DELETE THE OBJECT INSTANCE FROM S_DOBJ_INST TABLE 

WRITE REMOVE OBJECT fcECOfiDS TO THE TXN LOG 
FOR EACH MEMBER TABLE OF THE DOCKING OBJECT LOOP 

GENERATE SQL SELECT STATEMENT TO GET RECORDS ^TO DELETE 
WRITE EACH RETRIEVED RECORD TO THE. USER TXN LOG FILE 
END LOOP; ' 

REMOVE FOR PARENT OBJECT INSTANCES 
FOR EACH RELATEDDOCKINGOBJECT LOOP 

RUN PARAMETERSQL TO GET NEWPRIMARYID OF RELATEDDOCKINGOBJECTS 
FOR EACH NEWPRIMARYID RETRIEVED LOOP 

CHECK IF THE INSTANCE OF THE OBJECT IS VISIBLE TO THE LAPTOP 

USER 

CHECKOBJECTVISIBILITY ( LAPTOPNODEID , OBJECTNAME, PRIMARYROWID) 
IF NOT VISIBLE THEN 
REMOVEOBJECTINSTANCE (LAPTOPNODEID, 

RELATEDDOCKINGOBJECT, NEWPRIMARYROWID) ; 

END IF; 
END LOOP; 
END LOOP; 

RETURN TRUE; . . 
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WE CLAIM: 

1 . A METHOD OF ESTABLISHING AND MAINTAINING A SECURE TCP/IP SESSION 
BETWEEN A SERVER (301) HAVING A DATABASE AND A CLIENT (311) , 
5 COMPRISING: 

(A) SENDING A HELLO MESSAGE FROM THE CLIENT (311) TO THE SERVER 
(301) ESTABLISHING CLIENT AUTHORIZATION; 

(B) SAID SERVER (301) SENDING A SERVER SESSION ID AND A SESSION 
- . . , PRIVATE KEY TO THE CLIENT (311) . 

10 

2. THE METHOD OF CLAIM 1 WHEREIN THE CLIENT'S (311) HELLO MESSAGE 
CONTAINS THE CLIENT'S (311) PUBLIC KEY. 

. .3. THE METHOD OF CLAIM 1 COMPRISING ENCRYPTING THE SERVER (301) 
15 . SESSION ID USING THE CLIENT'S (311) FUBLIC KEY. 

4 . THE METHOD OF CLAIM 1 COMPRISING SENDING ALL MESSAGES BETWEEN THE 
. CLIENT (311) AND THE SERVER (301) WITH THE SESSION ID INCLUDED 
THEREIN. . 

20 

5. THE METHOD OF CLAIM WHEREIN THE SESSION ID IS A UNIQUE, NON- 
-REPEATING SESSION ID.. 

6. THE METHOD OF CLAIM 1 WHEREIN EACH MESSAGE IN THE SESSION HAS AN 
25 IDENTIFIER. 

7. THE METHOD OF CLAIM 6 WHEREIN. THE IDENTIFIER IS MONTONI CALLY 
INCREASING. 

30 8, THE METHOD OI? CLAIM 1; COMPRISING STORING THE CLIENT (311) PRIVATE 
KEY AT . THE CLIENT (311) , . . • 

9. THE METHOD OF CLAIM 1 WHEREIN INDIVIDUAL MESSAGES COMPRISE SQL 
COMMANDS. 

35 ■ V 

AN ARTICLE OF MANUFACTURE j CO&PRI S I NG : 

A COMPUTER USABLE .MEDIUM HAVING COMPUTER READABLE PROGRAM 
CODE MEANS EMBODIED THEREIN FOR ESTABLISHING AND MAINTAINING 
A SECURE TCP/IP SESSION, THE COMPUTER READABLE PROGRAM MEANS 
IN SAID ARTICLE OF MANUFACTURE COMPRISING: 

COMPUTER READABLE PROGRAM CODE MEANS' FOR CAUSING A COMPUTER 
TO EFFECT SENDING A HELLO MESSAGE FROM THE CLIENT (311) TO 
THE SERVER (301) ESTABLISHING CLIENT AUTHORIZATION; AND 
COMPUTER READABLE PROGRAM CODE MEANS FOR CAUSING THE 



10, 



40 



(A) 
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COMPUTER TO EFFECT SAID SERVER (301) SENDING A SERVER 
SESSION ID AND A SESSION PRIVATE KEY TO THE CLIENT (311) . 

11. THE ARTICLE OF MANUFACTURE OF CLAIM 10 * COMPRISING COMPUTER 
5 READABLE PROGRAM CODE MEANS FOR CAUSING THE COMPUTER TO 

INCORPORATE THE CLIENT'S (311) PUBLIC KEY IN THE CLIENT'S 
(311) HELLO MESSAGE . 

12. THE ARTICLE OF MANUFACTURE CLAIM 10 COMPRISING COMPUTER 

10 READABLE PROGRAM CODE MEANS FOR ENCRYPTING THE SERVER (301) 

SESSION ID USING THE CLIENT'S (311) PUBLIC KEY. 

- 13 . THE ARTICLE OF MANUFACTURE OF CLAIM 10 COMPRISING COMPUTER 

READABLE PROGRAM CODE FOR" SENDING ALL MESSAGES BETWEEN THE 
15 CLIENT (3 11)' AND THE SERVER (301) WITH THE SESSION ID 

INCLUDED THEREIN. 

. 14 . THE ARTICLE OF MANUFACTURE OF CLAIM 10 COMPRISING COMPUTER 

READABLE PROGRAM CODE FOR GENERATING IS A UNIQUE, NON- 
20 REPEATING SESSION ID. 

15. THE ARTICLE OF MANUFACTURE OF CLAIM 10 COMPRISING COMPUTER 
READABLE PROGRAM CODE FOR GENERATING AN IDENTIFIER FOR EACH 

/MESSAGE IN THE SESSION. 

25 

16. THE ARTICLE OF MANUFACTURE OF CLAIM 15 COMPRISING COMPUTER 
READABLE PROGRAM CODE FOR GENERATING A MONTONICALLY 
INCREASING IDENTIFIER. 

30 17i. THE ARTICLE Of MANUFACTURE COMPRISING COMPUTER READABLE 

PROGRAM CODE FOR STORING THE CLIENT (311) PRIVATE KEY AT THE 
CLIENT (311) , 

18. THE ARTICLE OF MANUFACTURE OF CLAIM 10 COMPRISING COMPUTER 

35 READABLE PROGRAM CODE FOR GENERATING SQL COMMANDS AS 

INt)ttVH5UAL MESSAGES IN THE SESSION. 

19.. A PROGRAM STORAGE-DEVICE READABLE BY A MACHINE, TANGIBLY 

.: -EKBODYItt© A -PfeOGRAM OF INSTRUCTIONS : EXECUTABLE BY A MACHINE 
40 : TO PERFORM METHOD- STEPS FOR ESTABLISHING AND MAINTAINING A 

"SECURE TCP/IP SESSION BETWEEN A SERVER (301) HAVING A 
DATABASE AND A CLIENT (311), SAID r METHOD STEPS COMPRISING: 
(A) SENDING A HELLO MESSAGE ' FROM THE CLIENT (311) TO THE SERVER 
'■■ (301) ESTABLISHING CLIENT AUTHORIZATION; 
45 * (B) SAID SERVER (301) SENDING A SERVER 1 SESSION ID AND A SESSION 
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PRIVATE KEY TO THE CLIENT (311) . 

THE PROGRAM STORAGE DEVICE OF CLAIM 19 WHEREIN SAID METHOD 
STEPS FURTHER COMPRISE THE CLIENT'S (311) HELLO MESSAGE 
CONTAINS THE CLIENT'S (311) PUBLIC KEY. 

THE PROGRAM STORAGE DEVICE OF CLAIM 19 WHEREIN SAID METHOD 
STEPS FURTHER COMPRISE ENCRYPTING THE SERVER (301) SESSION 
ID USING THE CLIENT'S (311) PUBLIC KEY. 

THE PROGRAM STORAGE DE VI CE .OF CLAIM 19 WHERE I N SAID METHOD 
STEPS FURTHER COMPRISE SENDING ALL. MESSAGES "BETWEEN THE 
CLIENT (311) AND THE SERVER (301) WITH THE SESSION ID 
INCLUDED THEREIN. 

THE PROGRAM STORAGE DEVICE OF CLAIM 22 WHEREIN SAID METHOD 
STEPS FURTHER COMPRISE GENERATING A UNIQUE, NON-REPEATING 
SESSION ID. 

THE PROGRAM STORAGE DEVICE OF CLAIM 19 WHEREIN SAID METHOD 
STEPS FURTHER COMPRISE ASSIGNING EACH MESSAGE IN THE SESSION 
AN IDENTIFIER. 

THE PROGRAM STORAGE DEVICE OF CLAIM 24 WHEREIN SAID METHOD 
STEPS FURTHER COMPRISE ASSIGNING EACH MESSAGE IN THE SESSION 
A MONTCNI CALLY INCREASING IDENTIFIER. 

THE PROGRAM STORAGE DEVICE OF CLAIM IS WHEREIN SAID METHOD 
STKP3 FURTHER COMPRISE STORING THE CLIENT (311) PRIVATE KEY 
AT TKiE CLIENT (311), 

THE PROGRAM STORAGE DEVICE OF CLAIM 19 WHEREIN SAID METHOD 
STEPS FURTHER COMPRISE INCORPORATING SQL COMMANDS IN 
INDIVIDUAL MESSAGES. 
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